Oracle Linux 8 : gnutls (ELSA-2020-1998)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1998 advisory. 3.6.8-10 - Fix CVE-2020-11501 1826176 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

Denial Of Service (DoS)

GnuTLS is vulnerable to denial of service DoS. It is vulnerable to a NULL pointer dereference while decoding a status response TLS extension with valid contents. This could lead to a crash of the GnuTLS server application...

[SECURITY] Fedora 31 Update: mingw-gnutls-3.6.13-1.fc31

GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW...

[SECURITY] Fedora 32 Update: mingw-gnutls-3.6.13-1.fc32

GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW...

Fedora 31 : mingw-gnutls (2020-d14280a6e8)

https://lists.gnupg.org/pipermail/gnutls-help/2020-March/004642.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

gnutls security update

3.6.8-10 - Fix CVE-2020-11501 1826176...

samba security, bug fix, and enhancement update

openchange 2.3-24.0.1 - Add patch to build against samba 4.11 2.3-24 - Rebuild for newer samba and libldb samba 4.11.2-13 - resolves: 1802182 - Fix join using netbios name 4.11.2-12 - related: 1781232 - Improve debug output of smbclient - resolves: 1794461 - Do not return bogus inode numbers in...

Moderate: Red Hat Security Advisory: gnutls security update

An update for gnutls is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

gnutls: DTLS client hello contains a random value of all zeroes

A cryptographic weakness was found in the way DLTS implementation of GnuTLS, used zeros in place of random numbers. This flaw can break the security guarantee of the DTLS protocol...

RHEL 8 : gnutls (RHSA-2020:1998)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1998 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS...

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509check function calls, which might assist attackers in performing man-in-the-middle attacks...

Photon OS 3.0: Gnutls PHSA-2020-3.0-0080

An update of the gnutls package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0080. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid135792;...

The vulnerability of the implementation of the HMAC-SHA-384 mechanism in the GnuTLS cryptographic library allows a perpetrator to carry out an “Lucky 13” attack and a attack that recovers the plaintext.

The vulnerability of the implementation of the HMAC-SHA-384 mechanism in the GnuTLS cryptographic library is related to errors in the implementation of the cryptographic algorithm. Exploiting this vulnerability allows a malicious actor to perform both a “Lucky 13” attack and an attack that recove...

MGASA-2020-0168 Updated gnutls packages fix security vulnerability

Updated gnutls packages fix security vulnerability: A flaw was reported in the DTLS protocol implementation in GnuTLS. The DTLS client would not contribute any randomness to the DTLS negotiation, breaking the security guarantees of the DTLS protocol CVE-2020-11501...

Updated gnutls packages fix security vulnerability

Updated gnutls packages fix security vulnerability: A flaw was reported in the DTLS protocol implementation in GnuTLS. The DTLS client would not contribute any randomness to the DTLS negotiation, breaking the security guarantees of the DTLS protocol CVE-2020-11501...

openSUSE Security Update : gmp / gnutls / libnettle (openSUSE-2020-501)

This update for gmp, gnutls, libnettle fixes the following issues : Security issue fixed : - CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes : - FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode...

Critical Photon OS Security Update - PHSA-2020-3.0-0080

Updates of 'PyYAML', 'file', 'gnutls', 'gnupg', 'postgresql' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2020-0080

Updates of 'postgresql', 'gnupg', 'file', 'gnutls', 'PyYAML' packages of Photon OS have been released...

openSUSE: Security Advisory for gmp, (openSUSE-SU-2020:0501-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:0501-1 Security update for gmp, gnutls, libnettle

This update for gmp, gnutls, libnettle fixes the following issues: Security issue fixed: - CVE-2020-11501: Fixed zero random value in DTLS client hello bsc1168345 FIPS related bugfixes: - FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode...