USN-2121-1: GnuTLS vulnerability

Suman Jana discovered that GnuTLS incorrectly handled version 1 intermediate certificates. This resulted in them being considered to be a valid CA certificate by default, which was contrary to documented behaviour...

DSA-2866-1 gnutls26 - certificate verification flaw

Bulletin has no description...

UBUNTU-CVE-2014-1959

lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates...

Amazon Linux AMI : nss (ALAS-2014-274)

It was found that a subordinate Certificate Authority CA mis-issued an intermediate certificate, which could be used to conduct man-in-the-middle attacks. This update renders that particular intermediate certificate as untrusted. C Tenable Network Security, Inc. The descriptive text and package...

Medium: ca-certificates

Issue Overview: It was found that a subordinate Certificate Authority CA mis-issued an intermediate certificate, which could be used to conduct man-in-the-middle attacks. This update renders that particular intermediate certificate as untrusted. Affected Packages: ca-certificates Issue Correction...

Scientific Linux Security Update : ca-certificates on SL6.x (noarch) (20131220)

It was found that a subordinate Certificate Authority CA mis-issued an intermediate certificate, which could be used to conduct man-in-the-middle attacks. This update renders that particular intermediate certificate as untrusted. After installing the update, all applications using the...

Ubuntu Update for nss USN-2063-1

Check for the Version of nss OpenVAS Vulnerability Test $Id: gbubuntuUSN20631.nasl 8448 2018-01-17 16:18:06Z teissa $ Ubuntu Update for nss USN-2063-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you c...

RedHat Update for nss RHSA-2013:1861-01

Check for the Version of nss OpenVAS Vulnerability Test RedHat Update for nss RHSA-2013:1861-01 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

CentOS Update for nss CESA-2013:1861 centos5

Check for the Version of nss OpenVAS Vulnerability Test CentOS Update for nss CESA-2013:1861 centos5 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

RedHat Update for ca-certificates RHSA-2013:1866-01

Check for the Version of ca-certificates OpenVAS Vulnerability Test RedHat Update for ca-certificates RHSA-2013:1866-01 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

ANSSI certificate is used for spoofing

ANSSI agency uses valid intermediate certificate in traffic sniffing device...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : nss vulnerability (USN-2063-1)

It was discovered that an intermediate certificate was incorrectly issued by a subordinate certificate authority of a trusted CA included in NSS. This intermediate certificate could be used in a man-in-the-middle attack, and has such been marked as untrusted in this update. Note that Tenable...

RedHat Update for nss RHSA-2013:1861-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS Update for ca-certificates CESA-2013:1866 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS Update for nss CESA-2013:1861 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-2063-1: NSS vulnerability

It was discovered that an intermediate certificate was incorrectly issued by a subordinate certificate authority of a trusted CA included in NSS. This intermediate certificate could be used in a machine-in-the-middle attack, and has such been marked as untrusted in this update...

SuSE 11.2 Security Update : libfreebl3 (SAT Patch Number 8648)

Mozilla NSS has been updated to the 3.15.3.1 security release. The update blacklists an intermediate CA that was abused to create man in the middle certificates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11...

RHEL 5 / 6 : nss (RHSA-2013:1861)

Updated nss packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Network Security Services NSS is a set of libraries designed to support the cross-platform...

CentOS 6 : ca-certificates (CESA-2013:1866)

An updated ca-certificates package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. This package contains the set of CA certificates chosen by the Mozilla Foundation for use...

RHEL 6 : ca-certificates (RHSA-2013:1866)

An updated ca-certificates package that fixes one security issue is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. This package contains the set of CA certificates chosen by the Mozilla Foundation for use...