Lucene search
K

27 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : gnutls-2.8.5-18.AXS4 (AXSA:2015-329:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-329:01 advisory. GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer. Currently the GnuTLS library...

7.5CVSS7.3AI score0.01586EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2015-0294

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate. CVE-2015-0294 Note that Nessus relies on the presence o...

7.5CVSS7.2AI score0.01586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 7 : gnutls (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gnutls: certificate algorithm consistency checking issue CVE-2015-0294 - gnutls: use-after-free flaw in C...

7.5CVSS7.7AI score0.39657EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:23 a.m.4 views

SUSE CVE-2015-0294

GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate...

7.5CVSS7AI score0.01586EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2015:0675-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.29958EPSS
Exploits3References12
CVE
CVE
added 2020/01/27 3:12 p.m.167 views

CVE-2015-0294

The CVE-2015-0294 entry concerns GnuTLS before 3.3.13, where the library does not validate that the signature algorithms match when importing a certificate. The vulnerability is documented in multiple connected sources (e.g., MiracleLinux AXSA advisory referencing CVE-2015-0294 and vendor advisor...

7.5CVSS7.3AI score0.01586EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2019/05/02 5:41 a.m.28 views

Improper Signature Validation

The GnuTLS library provides support for cryptographic algorithms and for protocols such as Transport Layer Security TLS. It was found that GnuTLS did not check activation and expiration dates of CA certificates. This could cause an application using GnuTLS to incorrectly accept a certificate as...

7.5CVSS7.4AI score0.01586EPSS
Exploits0References13Affected Software1
Veracode
Veracode
added 2019/05/02 5:41 a.m.38 views

Improper Signature Validation

The GnuTLS library provides support for cryptographic algorithms and for protocols such as Transport Layer Security TLS. It was found that GnuTLS did not check activation and expiration dates of CA certificates. This could cause an application using GnuTLS to incorrectly accept a certificate as...

7.5CVSS7.4AI score0.01586EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.25 views

F5 Networks BIG-IP : GnuTLS vulnerability (K54022413)

GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate. CVE-2015-0294 Impact GnuTLS does not check if all sections of X.509 certificates indicate the same signature algorithm. This flaw, in combination with a different flaw, can lead to a bypass of...

7.5CVSS7.2AI score0.01586EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.38 views

Mageia: Security Advisory (MGASA-2015-0322)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.1903EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.36 views

Oracle: Security Advisory (ELSA-2015-1457)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.01586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/08/05 12:0 a.m.31 views

Amazon Linux AMI : gnutls (ALAS-2015-575)

It was found that GnuTLS did not check activation and expiration dates of CA certificates. This could cause an application using GnuTLS to incorrectly accept a certificate as valid when its issuing CA is already expired. CVE-2014-8155 It was found that GnuTLS did not verify whether a hashing...

7.5CVSS7.2AI score0.01586EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/08/04 12:0 a.m.47 views

Scientific Linux Security Update : gnutls on SL6.x i386/x86_64 (20150722)

It was found that GnuTLS did not check activation and expiration dates of CA certificates. This could cause an application using GnuTLS to incorrectly accept a certificate as valid when its issuing CA is already expired. CVE-2014-8155 It was found that GnuTLS did not verify whether a hashing...

7.5CVSS7.1AI score0.01586EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/07/31 12:0 a.m.29 views

OracleVM 3.3 : gnutls (OVMSA-2015-0101)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix CVE-2015-0282 1198159 - fix CVE-2015-0294 1198159 - Corrected value initialization in mpi printing 1129241 - Check for expiry information in the CA certificates 1159778 - fix issue with integer...

7.5CVSS7.2AI score0.29958EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2015/07/30 12:0 a.m.26 views

Oracle Linux 6 : gnutls (ELSA-2015-1457)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1457 advisory. - fix CVE-2015-0282 1198159 - fix CVE-2015-0294 1198159 Tenable has extracted the preceding description block directly from the Oracle Linux security...

7.5CVSS7.4AI score0.01586EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2015/07/28 12:0 a.m.34 views

gnutls security and bug fix update

2.8.5-18 - fix CVE-2015-0282 1198159 - fix CVE-2015-0294 1198159 2.8.5-17 - Corrected value initialization in mpi printing 1129241 2.8.5-16 - Check for expiry information in the CA certificates 1159778 2.8.5-15 - fix issue with integer padding in certificates and keys 1036385...

5CVSS2.8AI score0.01586EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/07/23 12:0 a.m.29 views

RedHat Update for gnutls RHSA-2015:1457-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.01586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/04/08 12:0 a.m.23 views

SuSE 11.3 Security Update : GnuTLS (SAT Patch Number 10536)

GnuTLS was updated to fix two security issues : - A certificate algorithm consistency checking issue was fixed, where GnuTLS did not check whether the two signature algorithms match on certificate import. This problem is not deemed to be exploitable currently. CVE-2015-0294 - GNUTLS-SA-2015-1:...

7.5CVSS7.1AI score0.01586EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2015/03/31 12:0 a.m.36 views

openSUSE Security Update : gnutls (openSUSE-2015-269)

gnutls was updated to fix a security issue : A certificate algorithm consistency checking issue was fixed CVE-2015-0294. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-269. The...

7.5CVSS7.2AI score0.01586EPSS
Exploits0References2
Debian
Debian
added 2015/03/25 7:50 a.m.27 views

[SECURITY] [DLA 180-1] gnutls26 security update

Package : gnutls26 Version : 2.8.6-1+squeeze5 CVE ID : CVE-2014-8155 CVE-2015-0282 CVE-2015-0294 Multiple vulnerabilities have been discovered in GnuTLS, a library implementing the TLS and SSL protocols. The Common Vulnerabilities and Exposures project identifies the following problems:...

7.5CVSS7.1AI score0.01586EPSS
Exploits0
Rows per page
Query Builder