Fedora Update for mingw-gnutls FEDORA-2014-6953

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-201406-09 : GnuTLS: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201406-09 GnuTLS: Multiple vulnerabilities Multiple vulnerabilities have been discovered in GnuTLS. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could utilize multiple vectors to spoof...

openSUSE Security Update : wireshark (openSUSE-SU-2012:0558-1)

Changes in wireshark : - update to 1.4.12 - fix bnc754474, bnc754476, bnc754477fixed upstream - Security fixes : - wnpa-sec-2012-04 The ANSI A dissector could dereference a NULL pointer and crash. Bug 6823 - wnpa-sec-2012-06 The pcap and pcap-ng file parsers could crash trying to read ERF data. B...

openSUSE Security Update : gnutls (openSUSE-SU-2013:1714-1)

the following security issue was fixed : - Fix bug bnc848510, CVE-2013-4487 off-by-one security fix in libdane %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-858. The text...

openSUSE Security Update : gnutls (openSUSE-SU-2010:1025-1)

The SSL-renegotiation 'authentication gap' has been fixed in gnutls. CVE-2009-3555 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update gnutls-3388. The text...

openSUSE Security Update : emacs and depending packages (openSUSE-SU-2012:1348-1)

This update fixes the following issues for emacs, emacs-w3, gnuplot and ddskk: emacs : - Add fix for bnc775993 which disable arbitrary lisp code execution when 'enable-local-variables' is set to ':safe' CVE-2012-3479 - Add fix for bnc780653 to allow emacs to parse tar archives with PAX extended...

openSUSE Security Update : gnutls (openSUSE-SU-2014:0328-1)

The gnutls library was updated to fix SSL certificate validation. Remote man-in-the-middle attackers were able to make the verification believe that a SSL certificate is valid even though it was not. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

openSUSE Security Update : gnutls (openSUSE-SU-2010:1025-2)

This update fixes the safe renegotiation testing code which was missing in the previous update for CVE-2009-3555. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update gnutls-3647. The text...

GnuTLS: Multiple vulnerabilities

Background GnuTLS is an Open Source implementation of the TLS 1.2 and SSL 3.0 protocols. Description Multiple vulnerabilities have been discovered in GnuTLS. Please review the CVE identifiers referenced below for details. Impact A remote attacker could utilize multiple vectors to spoof arbitrary...

openSUSE Security Update : filezilla (openSUSE-SU-2013:1347-1)

FileZilla was updated to version 3.7.3 to add various features, fix bugs and also security issues in the embedded putty ssh client. Full changelog: https://filezilla-project.org/changelog.php - Noteworthy changes : - Apply a fix for a security vulnerability in PuTTY as used in FileZilla to handle...

openSUSE Security Update : gnutls (openSUSE-SU-2014:0763-1)

gnutls was patched to fix two security vulnerabilities that could be used to disrupt service or potentially allow remote code execution. - Memory corruption during connect CVE-2014-3466 - NULL pointer dereference in gnutlsx509dnoidname CVE-2014-3465 %NASLMINLEVEL 70300 C Tenable Network Security,...

openSUSE Security Update : gnutls (openSUSE-SU-2012:0620-1)

3 vulnerabilities were discovered for the gnutls packages in openSUSE version 12.1. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-277. The text description of this plugin is C...

openSUSE Security Update : gnutls (openSUSE-SU-2012:0344-1)

This update of GnuTLS fixes a vulnerability in the DTLS implementation which could allow remote attackers to recover partial plaintext via a timing side-channel attack. CVE-2012-0390. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE Security Update : openconnect (openSUSE-SU-2013:1072-1)

This openconnect update to version 3.20 includes several security and bug fixes. - fix bnc767616 - fix for CVE-2012-3291 - make vpnc mandatory during build, following upstream changes - package documentation in a -doc package - Update to version 3.20 - Cope with non-keepalive HTTP response on...

openSUSE Security Update : gnutls (openSUSE-2012-121)

Fix GnuTLS DTLS plaintext recovery attack %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-121. The text description of this plugin is C SUSE LLC. include'deprecatednasllevel.inc'...

openSUSE Security Update : gnutls (openSUSE-SU-2012:0215-1)

Large server tickets could crash gnutls clients. CVE-2011-4128 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update gnutls-5699. The text description of this plugin...

openSUSE Security Update : gnutls (openSUSE-SU-2014:0325-1)

The gnutls library was updated to fixed x509 certificate validation problems, where man-in-the-middle attackers could hijack SSL connections. This update also reenables Elliptic Curve support to meet current day cryptographic requirements. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : openconnect (openSUSE-SU-2013:0979-1)

This version update fixes several bugs : - Frequent connection drops fixed bnc817152. - Update to version 4.09 - Fix overflow on HTTP request buffers CVE-2012-6128bnc803347 - Fix connection to servers with round-robin DNS with two-stage auth/connect. - Impose minimum MTU of 1280 bytes. - Fix some...

openSUSE Security Update : gnutls (openSUSE-SU-2013:0283-1)

fix gnutls double free bnc752193, CVE-2012-1663.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-110. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : gnutls (openSUSE-SU-2013:0807-1)

Changes in gnutls : - Fix bug bnc802651 CVE-2013-1619 gnutls: Luck-13 issue Add patch file: CVE-2013-1619.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-428. The text...