8 matches found
Fedora 41 : gnutls (2025-814d6183dd)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-814d6183dd advisory. This updates gnutls to the latest upstream release. Notable changes are: PKCS11 cryptographic provider support Support for kTLS rekeying with kernel 6.14+...
openssh security update
7.4p1-23.0.1 - enlarge format buffer size for certificate serial number so the log message can record any 64-bit integer without truncation openssh bz3012 Orabug: 30448895 7.4p1-23 + 0.10.3-2 - Avoid remote code execution in ssh-agent PKCS11 support Resolves: CVE-2023-38408...
Important: Red Hat Security Advisory: openssh security update
An update for openssh is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Important: Red Hat Security Advisory: openssh security update
An update for openssh is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...
OpenSSH -- remote code execution via a forwarded agent socket
OpenSSH project reports: Fix CVE-2023-38408 - a condition where specific libaries loaded via ssh-agent1's PKCS11 support could be abused to achieve remote code execution via a forwarded agent socket if the following conditions are met: Exploitation requires the presence of specific libraries on t...
OPENSUSE-SU-2020:1699-1 Security update for bind
This update for bind fixes the following issues: BIND was upgraded to version 9.16.6: Note: - bind is now more strict in regards to DNSSEC. If queries are not working, check for DNSSEC issues. For instance, if bind is used in a namserver forwarder chain, the forwarding DNS servers must support...
gnutls security, bug fix, and enhancement update
3.3.26-9 - Address crash in OCSP status request extension, by eliminating the unneeded parsing CVE-2017-7507, 1455828 3.3.26-7 - Address interoperability issue with 3.5.x 1388932 - Reject CAs which are both trusted and blacklisted in trust module 1375303 - Added new functions to set issuer and...
Mandriva Linux Security Advisory : gnutls (MDVSA-2012:040)
A vulnerability has been found and corrected in GnuTLS : gnutlscipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service heap memory corruption and application crash...