23 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-16868
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS1 v1.5 data. An attacker wh...
CVE-2023-5981
A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS1 v1.5 padding...
Mageia: Security Advisory (MGASA-2019-0103)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advisory ROSA-SA-2021-1847
Software: gnutls 3.3.29 OS: Cobalt 7.9 CVE-ID: CVE-2014-3469 CVE-Crit: CRITICAL CVE-DESC: The 1 asn1readvaluetype and 2 asn1readvalue functions in GNU Libtasn1 before 3.6 allow context-sensitive attackers to cause a denial of service dereferencing a NULL pointer and crashing via a NULL value in t...
SUSE: Security Advisory (SUSE-SU-2019:1121-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : gnutls (SUSE-SU-2019:1351-2)
This update for gnutls fixes the following issues : Security issue fixed : CVE-2018-16868: Fixed Bleichenbacher-like side channel leakage in PKCS1 v1.5 verification bsc1118087. Non-security issue fixed: Explicitly require libnettle 3.4.1 to prevent missing symbol errors bsc1134856. Note that...
openSUSE: Security Advisory for gnutls (openSUSE-SU-2019:1477-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for gnutls (important)
openSUSE Security Update: Security update for gnutls Announcement ID: openSUSE-SU-2019:1477-1 Rating: important References: 1118087 1134856 Cross-References: CVE-2018-16868 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that solves one vulnerability and has one errata is now...
SUSE SLED15 / SLES15 Security Update : gnutls (SUSE-SU-2019:1351-1)
This update for gnutls fixes the following issues : Security issue fixed : CVE-2018-16868: Fixed Bleichenbacher-like side channel leakage in PKCS1 v1.5 verification bsc1118087. Non-security issue fixed: Explicitly require libnettle 3.4.1 to prevent missing symbol errors bsc1134856. Note that...
SUSE-SU-2019:1351-1 Security update for gnutls
This update for gnutls fixes the following issues: Security issue fixed: - CVE-2018-16868: Fixed Bleichenbacher-like side channel leakage in PKCS1 v1.5 verification bsc1118087. Non-security issue fixed: - Explicitly require libnettle 3.4.1 to prevent missing symbol errors bsc1134856...
openSUSE: Security Advisory for gnutls (openSUSE-SU-2019:1353-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : gnutls (openSUSE-2019-1353)
This update for gnutls fixes to version 3.6.7 the following issues : Security issued fixed : - CVE-2019-3836: Fixed an invalid pointer access via malformed TLS1.3 async messages bsc1130682. - CVE-2019-3829: Fixed a double free vulnerability in the certificate verification API bsc1130681. -...
SUSE SLED15 / SLES15 Security Update : gnutls (SUSE-SU-2019:1121-1)
This update for gnutls fixes to version 3.6.7 the following issues : Security issued fixed : CVE-2019-3836: Fixed an invalid pointer access via malformed TLS1.3 async messages bsc1130682. CVE-2019-3829: Fixed a double free vulnerability in the certificate verification API bsc1130681...
Updated gnutls packages fix security vulnerability
A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS1 v1.5 data. An attacker who is able to run process on the same physical core as the victim process, could use this to extract plaintext or in some cases downgrade...
Fedora 29 : gnutls (2019-99eefddc65)
Added explicit Requires for nettle = 3.4.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenab...
Fedora 28 : gnutls (2019-24dc022a51)
Security fix for CVE-2018-16868 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...
Fedora 29 : gnutls (2018-79f7540a1e)
Update to upstream 3.6.5 release - Security fix for CVE-2018-16868 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
[slackware-security] gnutls
New gnutls packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/gnutls-3.6.5-i586-1slack14.2.txz: Upgraded. This update fixes a security issue: Bleichenbacher-like side channel leakage in PKCS1 1.5...
Security fix for the ALT Linux 10 package gnutls30 version 3.6.5-alt1
Dec. 6, 2018 Mikhail Efremov 3.6.5-alt1 - Updated to 3.6.5 fixes: CVE-2018-16868...
Security fix for the ALT Linux 9 package gnutls30 version 3.6.5-alt1
Dec. 6, 2018 Mikhail Efremov 3.6.5-alt1 - Updated to 3.6.5 fixes: CVE-2018-16868...