EUVD-2017-16844

Malware in sbrugna...

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2017-1115)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

gnutls: Out-of-bounds write related to the cdk_pkt_read function (GNUTLS-SA-2017-3)

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10...

EulerOS 2.0 SP1 : gnutls (EulerOS-SA-2017-1115)

According to the version of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function...

GnuTLS has multiple vulnerabilities

GnuTLS is a free secure communications library for implementing the SSL, TLS and DTLS protocols developed by Nikos Mavrogiannopoulos of Belgium and Simon Josefsson of Sweden, software developers. A security vulnerability exists in the 'cdkpktread' function in the opencdk/read-packet.c file in...

CVE-2017-7869

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10...

CVE-2017-7869

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10...

CVE-2017-7869

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10...

CVE-2017-7869

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdkpktread function in opencdk/read-packet.c. This issue which is a subset of the vendor's GNUTLS-SA-2017-3 report is fixed in 3.5.10...

CVE-2017-7869

GnuTLS contains a vulnerability CVE-2017-7869: an out-of-bounds write caused by an integer overflow and heap-based buffer overflow in cdk_pkt_read (opencdk/read-packet.c). This affects older GnuTLS before 2017-02-20 and is a subset of GNUTLS-SA-2017-3; the issue can crash the application (denial ...

DEBIAN-CVE-2017-5336

Stack-based buffer overflow in the cdkpkgetkeyid function in lib/opencdk/pubkey.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via a crafted OpenPGP certificate...

CVE-2017-5336

CVE-2017-5336 : GnuTLS contains a stack-based buffer overflow in the cdk_pk_get_keyid function (lib/opencdk/pubkey.c), exploitable via crafted OpenPGP certificates. Affected versions are GnuTLS before 3.3.26 and 3.5.x before 3.5.8. Remediation: upgrade to a fixed release (upstream 3.3.26 or later...

GnuTLS 'lib/opencdk/read-packet.c' buffer overflow vulnerability

GnuTLS is a free secure communications library for implementing SSL, TLS and DTLS protocols. A heap buffer overflow vulnerability exists in GnuTLS that could be exploited by a remote attacker to submit a specially crafted request to crash an application linking to this library...

UBUNTU-CVE-2017-5335

The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a denial of service out-of-memory error and crash via a crafted OpenPGP certificate...