[SECURITY] Fedora 31 Update: glib-networking-2.62.4-1.fc31

This package contains modules that extend the networking support in GIO. In particular, it contains libproxy- and GSettings-based GProxyResolver implementations and a gnutls-based GTlsConnection implementation...

SUSE SLED15 / SLES15 Security Update : gnutls (SUSE-SU-2020:1584-1)

This update for gnutls fixes the following issues : CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker to...

Fedora 31 : gnutls (2020-76b705bb63)

Update to upstream 3.6.14 release, and security fix for CVE-2020-13777. ---- - Fix certificate chain validation involving the expired 'AddTrust External Root'. - Disable RSA blinding during FIPS self-tests to avoid hanging if there is not enough entropy for getrandom - Add --waitresumption option...

Fedora 32 : mingw-gnutls (2020-4f78f122a3)

Update to upstream 3.6.14 release, and security fix for CVE-2020-13777. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introduci...

Fedora 31 : mingw-gnutls (2020-ea11cb5ccc)

Update to upstream 3.6.14 release, and security fix for CVE-2020-13777. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introduci...

EulerOS 2.0 SP2 : curl (EulerOS-SA-2020-1626)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and...

CVE-2020-14154

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

CVE-2020-14154

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

CVE-2020-14154

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

Code injection

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

CVE-2020-14154

CVE-2020-14154 affects mutt prior to 1.14.3. In this version, the client proceeds with a connection after a GnuTLS certificate prompt where the user refuses an expired intermediate certificate, enabling potential trust bypass in TLS handshakes. The issue has been observed in multiple advisories (...

CVE-2020-14154

Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate...

[SECURITY] Fedora 31 Update: mingw-gnutls-3.6.14-1.fc31

GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW...

[SECURITY] Fedora 31 Update: gnutls-3.6.14-1.fc31

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, OpenPGP and...

[SECURITY] Fedora 32 Update: mingw-gnutls-3.6.14-1.fc32

GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW...

Important Photon OS Security Update - PHSA-2020-0103

Updates of 'kibana', 'glib-networking', 'glibc', 'linux-esx', 'openssh', 'systemd', 'linux', 'elasticsearch', 'linux- secure', 'linux-aws', 'gnutls' packages of Photon OS have been released...

Important Photon OS Security Update - PHSA-2020-3.0-0103

Updates of 'glibc', 'elasticsearch', 'kibana', 'linux-secure', 'linux-aws', 'openssh', 'gnutls', 'systemd', 'linux', 'linux-esx', 'glib-networking' packages of Photon OS have been released...

openSUSE Security Update : gnutls (openSUSE-2020-790)

This update for gnutls fixes the following issues : - CVE-2020-13777: Fixed an insecure session ticket key construction which could have made the TLS server to not bind the session ticket encryption key with a value supplied by the application until the initial key rotation, allowing an attacker ...

openSUSE: Security Advisory for gnutls (openSUSE-SU-2020:0790-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Updated openconnect packages fix security vulnerability

Updated openconnect packages fix security vulnerabilities: OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks CVE-2020-12105. OpenConnect 8.09 has a buffer overflow, causing a denial of...