[ASA-201609-25] gnutls: certificate verification bypass

Arch Linux Security Advisory ASA-201609-25 ========================================== Severity: Medium Date : 2016-09-26 CVE-ID : CVE-2016-7444 Package : gnutls Type : certificate verification bypass Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package gnutls...

[ASA-201609-26] lib32-gnutls: certificate verification bypass

Arch Linux Security Advisory ASA-201609-26 ========================================== Severity: Medium Date : 2016-09-26 CVE-ID : CVE-2016-7444 Package : lib32-gnutls Type : certificate verification bypass Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package...

CVE-2016-7444

A flaw was found in the way GnuTLS validated certificates using OCSP responses. This could falsely report a certificate as valid under certain circumstances...

Fedora 23 : gnutls (2016-2edb9adec8)

New upstream release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

Fedora 24 : gnutls (2016-e1589894e8)

New upstream release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

[SECURITY] Fedora 25 Update: mingw-gnutls-3.5.4-1.fc25

GnuTLS TLS/SSL encryption library. This library is cross-compiled for MinGW...

[SECURITY] Fedora 23 Update: gnutls-3.4.15-1.fc23

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, OpenPGP and...

Fedora Update for gnutls FEDORA-2016-e1589894e8

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for gnutls FEDORA-2016-2edb9adec8

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 24 Update: gnutls-3.4.15-1.fc24

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, OpenPGP and...

GnuTLS Security Bypass Vulnerability (CNVD-2016-07565)

GnuTLS is a free secure communications library for implementing the SSL, TLS and DTLS protocols developed by Nikos Mavrogiannopoulos of Belgium and Simon Josefsson of Sweden, software developers. A security bypass vulnerability exists in GnuTLS versions 3.3.24 and earlier, 3.4.14 and earlier, and...

[SECURITY] Fedora 25 Update: gnutls-3.5.4-1.fc25

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, OpenPGP and...

Slackware 14.0 / 14.1 / 14.2 / current : gnutls (SSA:2016-254-01)

New gnutls packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2016-254-01. The text itself is...

FreeBSD : gnutls -- OCSP validation issue (a0128291-7690-11e6-95a8-0011d823eebd)

gnutls.org reports : Stefan Buhler discovered an issue that affects validation of certificates using OCSP responses, which can falsely report a certificate as valid under certain circumstances. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

[slackware-security] gnutls

New gnutls packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/gnutls-3.4.15-i586-1slack14.2.txz: Upgraded. This update fixes some bugs and security issues. For more information, see:...

gnutls -- OCSP validation issue

gnutls.org reports: Stefan Bühler discovered an issue that affects validation of certificates using OCSP responses, which can falsely report a certificate as valid under certain circumstances...

SWEET32: TLS 6 4-bit block cipher birthday attack(CVE-2 0 1 6-2 1 8 3)-vulnerability warning-the black bar safety net

The problem of the attack of harsh conditions. The attacker needs to get a lot of ciphertext, the thesis of the author is by 3 0 hours, 610GB of data to achieve. In addition, the need to plaintext in Important Information a lot of repetition which is to eventually be able to decrypt it's content,...

Wireshark 1.12.0 1.12.12 - NDS Dissector Denial of Service

Wireshark 1.12.0 1.12.12 - NDS Dissector Denial of Service Sample generated with AFL Build Information: TShark 1.12.9 v1.12.9-0-gfadb421 from HEAD Copyright 1998-2015 Gerald Combs and contributors. This is free software; see the source for copying conditions. There is NO warranty; not even for...

Wireshark 2.0.0 2.0.4 - CORBA IDL Dissectors Denial of Service

Wireshark 2.0.0 2.0.4 - CORBA IDL Dissectors Denial of Service GIOP capture Build Information: Version 2.0.3 v2.0.3-0-geed34f0 from master-2.0 Copyright 1998-2016 Gerald Combs and contributors. License GPLv2+: GNU GPL version 2 or later This is free software; see the source for copying conditions...

Fedora Update for gnutls FEDORA-2016-2a5046f726

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...