Lucene search

K
suseSuseOPENSUSE-SU-2014:0346-1
HistoryMar 08, 2014 - 7:04 p.m.

gnutls (critical)

2014-03-0819:04:13
lists.opensuse.org
17

EPSS

0.075

Percentile

94.1%

The gnutls library was updated to fix SSL certificate
validation. Remote man-in-the-middle attackers were able to
make the verification believe that a SSL certificate is
valid even though it was not. Also the TLS-CBC timing
attack vulnerability was fixed.