4556 matches found
DSA-1581-1 gnutls13 - potential code execution
Bulletin has no description...
Debian and Ubuntu OpenSSL packages contain a predictable random number generator
Overview A vulnerability in the OpenSSL package included with the Debian GNU/Linux operating system and its derivatives may cause weak cryptographic keys to be generated. Description A weakness exists in the random number generator used by the OpenSSL package included with the Debian GNU/Linux...
DSA-1571-1 openssl - predictable random number generator
Bulletin has no description...
Debian Security Advisory DSA 1333-1 (libcurl3-gnutls)
The remote host is missing an update to libcurl3-gnutls announced via advisory DSA 1333-1. OpenVAS Vulnerability Test $Id: deb13331.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1333-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 986-1 (gnutls11)
The remote host is missing an update to gnutls11 announced via advisory DSA 986-1. Evgeny Legerov discovered several out-of-bounds memory accesses in the DER decoding component component of the Tiny ASN.1 Library, which is also present and used in GnuTLS, the GNU implementation for Transport Laye...
Debian: Security Advisory (DSA-986-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-1333-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security fix for the ALT Linux 9 package wireshark version 0.99.7-alt1
Dec. 23, 2007 Sir Raorn 0.99.7-alt1 - 0.99.7 + CVE-2007-6451 + CVE-2007-6450 + CVE-2007-6441 + CVE-2007-6439 + CVE-2007-6438 + CVE-2007-6121 + CVE-2007-6120 + CVE-2007-6119 + CVE-2007-6118 + CVE-2007-6117 + CVE-2007-6116 + CVE-2007-6115 + CVE-2007-6114 + CVE-2007-6113 + CVE-2007-6112 +...
Ubuntu 6.06 LTS / 6.10 / 7.04 : curl vulnerability (USN-484-1)
It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates. Note that Tenable Network...
Debian DSA-1333-1 : libcurl3-gnutls - missing input validation
It has been discovered that the GnuTLS certificate verification methods implemented in libcurl-gnutls, a solid, usable, and portable multi-protocol file transfer library, did not check for expired or invalid dates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
curl TLS certificates spoofing
Certificate's activation adn expire dates are not checked if GnuTLS verification method is used...
[SECURITY] [DSA 1333-1] New libcurl3-gnutls packages fix certificate handling
------------------------------------------------------------------------ Debian Security Advisory DSA-1333 [email protected] http://www.debian.org/security/ Steve Kemp July 18th, 2007 - ------------------------------------------------------------------------ Package : libcurl3-gnutls...
Design/Logic Flaw
libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions...
CVE-2007-3564
libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions...
CVE-2007-3564
libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions...
CVE-2007-3564
libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions...
CVE-2007-3564
libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions...
CVE-2007-3564
CVE-2007-3564 affects libcurl versions 7.14.0–7.16.3 built with GnuTLS, where certificate expiration/activation dates are not checked, enabling bypass of access restrictions. Connected advisories note fixed packages: Debian/etch update to curl libcurl3-gnutls (e.g., 7.15.5-1etch1) and Ubuntu/Debi...
CVE-2007-3564
libcurl 7.14.0 through 7.16.3, when built with GnuTLS support, does not check SSL/TLS certificate expiration or activation dates, which allows remote attackers to bypass certain access restrictions...
DSA-1333-1 curl
Bulletin has no description...