Fedora Update for mingw-gnutls FEDORA-2012-4451

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for mingw-libtasn1 FEDORA-2012-4451

Check for the Version of mingw-libtasn1 OpenVAS Vulnerability Test Fedora Update for mingw-libtasn1 FEDORA-2012-4451 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

Gentoo Security Advisory GLSA 201206-18 (GnuTLS)

The remote host is missing updates announced in advisory GLSA 201206-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 201206-18 (GnuTLS)

The remote host is missing updates announced in advisory GLSA 201206-18. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Mandriva Update for gnutls MDVSA-2012:040 (gnutls)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for libtasn1 MDVSA-2012:039 (libtasn1)

Check for the Version of libtasn1 OpenVAS Vulnerability Test Mandriva Update for libtasn1 MDVSA-2012:039 libtasn1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Mandriva Update for gnutls MDVSA-2012:045 (gnutls)

Check for the Version of gnutls OpenVAS Vulnerability Test Mandriva Update for gnutls MDVSA-2012:045 gnutls Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Mandriva Update for gnutls MDVSA-2012:040 (gnutls)

Check for the Version of gnutls OpenVAS Vulnerability Test Mandriva Update for gnutls MDVSA-2012:040 gnutls Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Mandriva Update for libtasn1 MDVSA-2012:039 (libtasn1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for gnutls MDVSA-2012:045 (gnutls)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Scientific Linux Security Update : gnutls on SL5.x i386/x86_64

Flaws were found in the way GnuTLS handles malicious client connections. A malicious remote client could send a specially crafted request to a service using GnuTLS that could cause the service to crash. CVE-2008-1948, CVE-2008-1949, CVE-2008-1950 At this time we have not seen any code that is usi...

Scientific Linux Security Update : gnutls on SL4.x i386/x86_64

Flaws were found in the way GnuTLS handles malicious client connections. A malicious remote client could send a specially crafted request to a service using GnuTLS that could cause the service to crash. CVE-2008-1948, CVE-2008-1949, CVE-2008-1950 At this time we have not seen any code that is usi...

Scientific Linux Security Update : gnutls on SL5.x i386/x86_64

Martin von Gagern discovered a flaw in the way GnuTLS verified certificate chains provided by a server. A malicious server could use this flaw to spoof its identity by tricking client applications using the GnuTLS library to trust invalid certificates. CVE-2008-4989 %NASLMINLEVEL 70300 C Tenable...

Scientific Linux Security Update : gnutls on SL6.x i386/x86_64 (20120327)

The GnuTLS library provides support for cryptographic algorithms and for protocols such as Transport Layer Security TLS. A flaw was found in the way GnuTLS decrypted malformed TLS records. This could cause a TLS/SSL client or server to crash when processing a specially crafted TLS record from a...

Scientific Linux Security Update : gnutls on SL4.x, SL5.x i386/x86_64

CVE-2009-2730 gnutls: incorrect verification of SSL certificate with NUL in name GNUTLS-SA-2009-4 A flaw was discovered in the way GnuTLS handles NULL characters in certain fields of X.509 certificates. If an attacker is able to get a carefully-crafted certificate signed by a Certificate Authorit...

Scientific Linux Security Update : gnutls on SL4.x, SL5.x i386/x86_64

CVE-2009-3555 TLS: MITM attacks via session renegotiation CVE-2010-0731 gnutls: gnutlsx509crtgetserial incorrect serial decoding from ASN1 BE64 GNUTLS-SA-2010-1 A flaw was found in the way the TLS/SSL Transport Layer Security/Secure Sockets Layer protocols handled session renegotiation. A...

Scientific Linux Security Update : lftp on SL5.x i386/x86_64

CVE-2007-2348 lftp mirror --script does not escape names and targets of symbolic links It was discovered that lftp did not properly escape shell metacharacters when generating shell scripts using the 'mirror --script' command. A mirroring script generated to download files from a malicious FTP...

Scientific Linux Security Update : libgcrypt on SL5.0 - 5.3 i386/x86_64

gnutls-1.4.1-3.el54.8 is a moderate security update that required /usr/libm/libgcrypt.so.11 to have the symbol gcryciphersetkey This is only available in the newer libgcrypt that was released with SL 5.4. This update updates libgcrypt in the older SL 5 releases so that the gnutls security update...

Scientific Linux Security Update : gnutls on SL5.x i386/x86_64 (20120327)

The GnuTLS library provides support for cryptographic algorithms and for protocols such as Transport Layer Security TLS. GnuTLS includes libtasn1, a library developed for ASN.1 Abstract Syntax Notation One structures management that includes DER Distinguished Encoding Rules encoding and decoding....

Scientific Linux Security Update : libtasn1 on SL6.x i386/x86_64 (20120327)

libtasn1 is a library developed for ASN.1 Abstract Syntax Notation One structures management that includes DER Distinguished Encoding Rules encoding and decoding. A flaw was found in the way libtasn1 decoded DER data. An attacker could create carefully-crafted DER encoded input such as an X.509...