4455 matches found
DEBIAN-CVE-2012-1663
Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted certificate list...
CVE-2012-1663
Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted certificate list...
CVE-2012-1663
Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted certificate list...
CVE-2012-1663
Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted certificate list...
CVE-2012-1663
CVE-2012-1663 describes a double-free vulnerability in libgnutls (GnuTLS) before 3.0.14, allowing remote attackers to cause a denial of service (application crash) or potentially other impact via a crafted certificate list. Public references show exploits and advisories: exploitation activity exi...
CVE-2012-1663
Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted certificate list...
gnutls: unknown hash algorithm NULL pointer derefence [GNUTLS-SA-2006-2]
The gnutlsx509oid2macalgorithm function in lib/gnutlsalgorithms.c in GnuTLS before 1.4.2 allows remote attackers to cause a denial of service crash via a crafted X.509 certificate that uses a hash algorithm that is not supported by GnuTLS, which triggers a NULL pointer dereference...
Low: Red Hat Bug Fix Advisory: gnutls bug fix update
Updated gnutls packages that fix one bug are now available for Red Hat Enterprise Linux 5. The gnutls package provides the GNU Transport Layer Security GnuTLS library, which provides a secure layer over a transport layer using protocols such as TLS, SSL and DTLS. This update fixes the following...
FreeBSD Ports: gnutls
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: gnutls
The remote host is missing an update to the system as announced in the referenced advisory. VID bdec8dc2-0b3b-11e1-b722-001cc0476564 OpenVAS Vulnerability Test $ Description: Auto generated from VID bdec8dc2-0b3b-11e1-b722-001cc0476564 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Gentoo Security Advisory GLSA 201110-05 (gnutls)
The remote host is missing updates announced in advisory GLSA 201110-05. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Gentoo Security Advisory GLSA 201110-05 (gnutls)
The remote host is missing updates announced in advisory GLSA 201110-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
SuSE 11.1 Security Update : GnuTLS (SAT Patch Number 5684)
This update for GnuTLS provides the following fixes : - Fix typo in patch for gnutls-cli that can cause a crash. bnc659907 - Fix Buffer overflow in the gnutlssessiongetdata function in lib/gnutlssession.c , when used on a client that performs nonstandard session resumption, allows remote TLS...
Ubuntu 10.10 / 11.04 / 11.10 : curl vulnerability (USN-1346-1)
Dan Fandrich discovered that curl incorrectly handled URLs containing embedded or percent-encoded control characters. If a user or automated system were tricked into processing a specially crafted URL, arbitrary data could be injected. Note that Tenable Network Security has extracted the precedin...
CVE-2012-0390
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it easier for remote attackers to recover partial plaintext via a timing side-channel attack, a related...
CVE-2012-0390
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it easier for remote attackers to recover partial plaintext via a timing side-channel attack, a related...
CVE-2012-0390
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it easier for remote attackers to recover partial plaintext via a timing side-channel attack, a related...
Sql injection
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it easier for remote attackers to recover partial plaintext via a timing side-channel attack, a related...
CVE-2012-0390
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it easier for remote attackers to recover partial plaintext via a timing side-channel attack, a related...
CVE-2012-0390
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between a padding length and the ciphertext size, which makes it easier for remote attackers to recover partial plaintext via a timing side-channel attack, a related...