Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2017-7869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in...

7.5CVSS7.4AI score0.02839EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2017-0212)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.0341EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/23 1:45 a.m.35 views

Security Bulletin: Vulnerabilities in GnuTLS affect Power Hardware Management Console

Summary GnuTLS is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2017-7869 DESCRIPTION: GnuTLS is vulnerable to a denial of service, caused by an integer overflow and heap-based buffer overflow in cdkpktread function in...

9.8CVSS1.3AI score0.32754EPSS
Exploits0Affected Software1
OSV
OSV
added 2017/07/22 9:36 a.m.9 views

MGASA-2017-0212 Updated gnutls packages fix security vulnerabilities

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10. CVE-2017-7869 GnuTLS version 3.5.1...

7.5CVSS7.5AI score0.0341EPSS
Exploits0References5
Mageia
Mageia
added 2017/07/22 9:36 a.m.35 views

Updated gnutls packages fix security vulnerabilities

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10. CVE-2017-7869 GnuTLS version 3.5.1...

7.5CVSS3.9AI score0.0341EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.30 views

openSUSE Security Update : gnutls (openSUSE-2017-824)

This update for gnutls fixes the following issues : - GNUTLS-SA-2017-4 / CVE-2017-7507: Fix crash in status response TLS extension decoding bsc1043398 - GNUTLS-SA-2017-3 / CVE-2017-7869: Fix out-of-bounds write in OpenPGP certificate decoding bsc1034173 - Address read of 4 bytes past the end of...

7.5CVSS7.6AI score0.0341EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/07/12 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : gnutls (SUSE-SU-2017:1838-1)

This update for gnutls fixes the following issues : - GNUTLS-SA-2017-4 / CVE-2017-7507: Fix crash in status response TLS extension decoding bsc1043398 - GNUTLS-SA-2017-3 / CVE-2017-7869: Fix out-of-bounds write in OpenPGP certificate decoding bsc1034173 - Address read of 4 bytes past the end of...

7.5CVSS7.6AI score0.0341EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2017/06/14 12:0 a.m.50 views

Ubuntu 14.04 LTS / 16.04 LTS : GnuTLS vulnerabilities (USN-3318-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3318-1 advisory. Hubert Kario discovered that GnuTLS incorrectly handled decoding a status response TLS extension. A remote attacker could possibly use this...

7.5CVSS7.9AI score0.0341EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2017/06/13 5:1 p.m.64 views

USN-3318-1: GnuTLS vulnerabilities

Hubert Kario discovered that GnuTLS incorrectly handled decoding a status response TLS extension. A remote attacker could possibly use this issue to cause GnuTLS to crash, resulting in a denial of service. This issue only applied to Ubuntu 16.04 LTS, Ubuntu 16.10 and Ubuntu 17.04. CVE-2017-7507 I...

7.5CVSS7.5AI score0.0341EPSS
Exploits0
CVE
CVE
added 2017/04/14 4:30 a.m.101 views

CVE-2017-7869

GnuTLS contains a vulnerability CVE-2017-7869: an out-of-bounds write caused by an integer overflow and heap-based buffer overflow in cdk_pkt_read (opencdk/read-packet.c). This affects older GnuTLS before 2017-02-20 and is a subset of GNUTLS-SA-2017-3; the issue can crash the application (denial ...

7.5CVSS7.3AI score0.02839EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder