18 matches found
Alibaba Cloud Linux 3 : 0008: gnutls (ALINUX3-SA-2021:0008)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0008 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-3829: A vulnerability was found i...
SUSE SLES15: gmp-devel / gmp-devel-32bit / libgmp10 / libgmp10-32bit / libgmpxx4 / etc (SUSE-SU-2020:0948-2)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2020:0948-2 advisory. Security issue fixed: - CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes: - FIPS: Install checksums for...
CVE-2020-11501 affecting package gnutls 3.6.8-
CVE-2020-11501 affecting package gnutls 3.6.8-. An upgraded version of the package is available that resolves this issue...
SUSE: Security Advisory (SUSE-SU-2020:0948-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2020-1803)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 31 : mingw-gnutls (2020-d14280a6e8)
https://lists.gnupg.org/pipermail/gnutls-help/2020-March/004642.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
gnutls security update
3.6.8-10 - Fix CVE-2020-11501 1826176...
Updated gnutls packages fix security vulnerability
Updated gnutls packages fix security vulnerability: A flaw was reported in the DTLS protocol implementation in GnuTLS. The DTLS client would not contribute any randomness to the DTLS negotiation, breaking the security guarantees of the DTLS protocol CVE-2020-11501...
MGASA-2020-0168 Updated gnutls packages fix security vulnerability
Updated gnutls packages fix security vulnerability: A flaw was reported in the DTLS protocol implementation in GnuTLS. The DTLS client would not contribute any randomness to the DTLS negotiation, breaking the security guarantees of the DTLS protocol CVE-2020-11501...
openSUSE Security Update : gmp / gnutls / libnettle (openSUSE-2020-501)
This update for gmp, gnutls, libnettle fixes the following issues : Security issue fixed : - CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes : - FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode...
OPENSUSE-SU-2020:0501-1 Security update for gmp, gnutls, libnettle
This update for gmp, gnutls, libnettle fixes the following issues: Security issue fixed: - CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes: - FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode...
Security update for gmp, gnutls, libnettle (moderate)
openSUSE Security Update: Security update for gmp, gnutls, libnettle Announcement ID: openSUSE-SU-2020:0501-1 Rating: moderate References: 1152692 1155327 1166881 1168345 Cross-References: CVE-2020-11501 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has three...
SUSE SLED15 / SLES15 Security Update : gmp, gnutls, libnettle (SUSE-SU-2020:0948-1)
This update for gmp, gnutls, libnettle fixes the following issues : Security issue fixed : CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes: FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode...
SUSE-SU-2020:0948-1 Security update for gmp, gnutls, libnettle
This update for gmp, gnutls, libnettle fixes the following issues: Security issue fixed: - CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes: - FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode...
Ubuntu 19.10 : gnutls28 vulnerability (USN-4322-1)
It was discovered that GnuTLS incorrectly handled randomness when performing DTLS negotiation. A remote attacker could possibly use this issue to obtain sensitive information, contrary to expectations. Note that Tenable Network Security has extracted the preceding description block directly from...
[SECURITY] [DSA 4652-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4652-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 04, 2020 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4652-1] gnutls28 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4652-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 04, 2020 https://www.debian.org/security/faq -...
CVE-2020-11501
CVE-2020-11501 affects GnuTLS 3.6.x prior to 3.6.13. The DTLS client uses 32 null bytes instead of random values during DTLS negotiations, removing randomness and breaking DTLS security guarantees. Affected range starts at 3.6.3 (2018-07-16) due to a 2017-10-06 commit. The issue was fixed in 3.6....