Lucene search
K

117 matches found

Ubuntu
Ubuntu
added 2025/02/20 6:1 p.m.83 views

USN-7281-1: GnuTLS vulnerability

Bing Shi discovered that GnuTLS incorrectly handled decoding certain DER-encoded certificates. A remote attacker could possibly use this issue to cause GnuTLS to consume resources, leading to a denial of service...

5.3CVSS6.8AI score0.01245EPSS
Exploits0
OSV
OSV
added 2025/02/10 4:15 p.m.6 views

ALPINE-CVE-2024-12243

A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially...

5.3CVSS5.6AI score0.01245EPSS
Exploits0References1
Broadcom
Broadcom
added 2025/01/08 12:0 a.m.21 views

Brocade ASCG Vulnerability Disclosures

Brocade Security Advisories posted on July 1, 2026 CVE addressed in ASCG 3.4.0c CVE-2026-31431 crypto: algifaead - Revert to operating out-of-place PSIRT Risk: High https://support.broadcom.com/external/content/SecurityAdvisories/0/37827 CVE-2026-43284 xfrm: esp: avoid in-place decrypt on shared...

9.8CVSS8AI score0.96267EPSS
Exploits272
Microsoft CVE
Microsoft CVE
added 2024/10/01 7:0 a.m.8 views

OCSP stapling bypass with GnuTLS

...

6.5CVSS6.9AI score0.00729EPSS
Exploits1
OSV
OSV
added 2024/09/19 6:6 p.m.10 views

CLSA-2024-1726769216 gnutls: Fix of CVE-2024-28834

CVE-2024-28834: fix side-channel leak in the deterministic ECDSA...

5.3CVSS5.8AI score0.00718EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/03/05 3:22 p.m.2 views

gnutls: incomplete fix for CVE-2023-5981

A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange,...

7.5CVSS6.7AI score0.01614EPSS
Exploits1References6
OSV
OSV
added 2024/02/15 8:38 p.m.12 views

CLSA-2024-1708029490 gnutls: Fix of 3 CVEs

Add CVE-2024-0567 PoC test - Remove src.rpm from sources - CVE-2023-5981: removes branching that depends on secret data to prevent potential side-channel attack - CVE-2024-0553: minimize branching after decryption...

7.5CVSS6.8AI score0.01614EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2024/02/13 8:18 a.m.3 views

gnutls: incomplete fix for CVE-2023-5981

A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange,...

7.5CVSS6.7AI score0.01614EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/01/25 12:0 a.m.7 views

The vulnerability of the GnuTLS cryptographic library, related to errors in verifying the cryptographic signature, allows a perpetrator to trigger a service failure.

The vulnerability of the transport-layer cryptographic library GnuTLS is related to errors in verifying the cryptographic signature. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause service failures...

7.8CVSS6.5AI score0.01408EPSS
Exploits1References15Affected Software7
SUSE CVE
SUSE CVE
added 2024/01/17 2:45 a.m.1 views

SUSE CVE-2024-0553

A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange,...

5.9CVSS6.7AI score0.01614EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2023/05/23 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2023-0067)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8AI score0.01403EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2023/02/19 12:0 a.m.10 views

Debian: Security Advisory (DLA-3321-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS8AI score0.01403EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:18 a.m.3 views

SUSE CVE-2005-1431

The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 allows remote attackers to cause a denial of service, possibly related to padding bytes in gnutilscipher.c...

5CVSS7.1AI score0.01931EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.3 views

SUSE CVE-2009-1415

lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service application crash and possibly have unspecified other impact via a malformed DSA key that triggers a 1 free of an uninitialized pointe...

4.3CVSS7.5AI score0.07922EPSS
Exploits5References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.3 views

SUSE CVE-2009-1417

gnutls-cli in GnuTLS before 2.6.6 does not verify the activation and expiration times of X.509 certificates, which allows remote attackers to successfully present a certificate that is 1 not yet valid or 2 no longer valid, related to lack of time checks in the gnutlsx509verifycertificate function...

5CVSS7AI score0.01428EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:3 a.m.4 views

SUSE CVE-2009-2730

libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's 1 Common Name CN or 2 Subject Alternative Name SAN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued b...

7.5CVSS6.8AI score0.02151EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:39 a.m.3 views

SUSE CVE-2013-2116

The gnutlsciphertext2compressed function in lib/gnutlscipher.c in GnuTLS 2.12.23 allows remote attackers to cause a denial of service buffer over-read and crash via a crafted padding length. NOTE: this might be due to an incorrect fix for CVE-2013-0169...

5CVSS6.3AI score0.03761EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-4487

Off-by-one error in the danerawtlsa in the DANE library libdane in GnuTLS 3.1.x before 3.1.16 and 3.2.x before 3.2.6 allows remote servers to cause a denial of service memory corruption via a response with more than four DANE entries. NOTE: this issue is due to an incomplete fix for CVE-2013-4466...

5CVSS6.5AI score0.0192EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:23 a.m.2 views

SUSE CVE-2015-0282

GnuTLS before 3.1.0 does not verify that the RSA PKCS 1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspecified vectors...

5CVSS7AI score0.01397EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:50 a.m.4 views

SUSE CVE-2017-5337

Multiple heap-based buffer overflows in the readattribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to have unspecified impact via a crafted OpenPGP certificate...

9.8CVSS7.9AI score0.06179EPSS
Exploits0References7
Rows per page
Query Builder