Lucene search
SuseOPENSUSE-SU-2018:2854-1HistorySep 25, 2018 - 3:11 p.m.
Security update for gnutls (moderate)
2018-09-2515:11:36
lists.opensuse.org
116
0.019 Low
EPSS
Percentile
87.2%
This update for gnutls fixes the following issues:
Security issues fixed:
- Improved mitigations against Lucky 13 class of attacks
- CVE-2018-10846: "Just in Time" PRIME + PROBE cache-based side channel
attack can lead to plaintext recovery (bsc#1105460) - CVE-2018-10845: HMAC-SHA-384 vulnerable to Lucky thirteen attack due to
use
of wrong constant (bsc#1105459) - CVE-2018-10844: HMAC-SHA-256 vulnerable to Lucky thirteen attack due to
not enough dummy function calls (bsc#1105437) - CVE-2017-10790: The _asn1_check_identifier function in Libtasn1 caused a
NULL pointer dereference and crash (bsc#1047002)
This update was imported from the SUSE:SLE-12-SP3:Update update project.
Related
nessus
nessus
SUSE SLES12 Security Update : gnutls (SUSE-SU-2018:2825-1)
2018-09-25 00:00:00
openSUSE Security Update : gnutls (openSUSE-2018-1049)
2018-09-27 00:00:00
openSUSE Security Update : gnutls (openSUSE-2019-746)
2019-03-27 00:00:00
openvas
openvas
openSUSE: Security Advisory for gnutls (openSUSE-SU-2018:2854-1)
2018-09-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2930-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2825-2)
2021-04-19 00:00:00
suse
suse
Security update for gnutls (moderate)
2018-10-01 12:08:01
redhat
redhat
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in GnuTLS affects IBM Watson Studio Local
2019-12-18 17:54:07
Security Bulletin: IBM Security Guardium is aware of a GnuTLS vulnerability
2019-02-19 20:20:01
Security Bulletin: Vulnerabilities in GnuTLS affect PowerKVM
2018-12-17 14:20:01
debian
debian
[SECURITY] [DLA 1560-1] gnutls28 security update
2018-10-30 16:34:01
[SECURITY] [DLA 1038-1] libtasn1-3 security update
2017-07-24 20:19:04
[SECURITY] [DLA 2255-1] libtasn1-6 security update
2020-06-28 12:07:32
oraclelinux
oraclelinux
gnutls security, bug fix, and enhancement update
2018-11-05 00:00:00
amazon
amazon
Medium: gnutls
2018-12-06 20:25:00
osv
osv
gnutls28 - security update
2018-10-30 00:00:00
CVE-2018-10846
2018-08-22 13:29:00
CVE-2018-10844
2018-08-22 13:29:00
mageia
mageia
Updated gnutls packages fix security vulnerabilities
2018-11-03 14:55:18
Updated libtasn1 packages fix security vulnerability
2018-02-08 14:30:47
centos
centos
gnutls security update
2018-12-14 16:36:35
fedora
fedora
[SECURITY] Fedora 32 Update: mingw-gnutls-3.6.13-1.fc32
2020-05-08 02:45:52
[SECURITY] Fedora 31 Update: mingw-gnutls-3.6.13-1.fc31
2020-05-08 04:01:03
ubuntucve
ubuntucve
ubuntu
ubuntu
GnuTLS vulnerabilities
2019-05-30 00:00:00
Libtasn1 vulnerabilities
2018-01-25 00:00:00
cloudfoundry
cloudfoundry
USN-3999-1: GnuTLS vulnerabilities | Cloud Foundry
2019-06-18 00:00:00
USN-3547-1: Libtasn1 vulnerabilities | Cloud Foundry
2018-03-01 00:00:00
debiancve
debiancve
veracode
veracode
Timing Attack
2019-01-15 09:26:53
Timing Attack
2018-08-23 08:49:33
Side-Channel Attack
2018-11-01 03:10:27
cve
cve
prion
prion
Code injection
2018-08-22 13:29:00
Null pointer dereference
2017-07-02 03:29:00
Cross site scripting
2018-08-22 13:29:00
redhatcve
redhatcve
alpinelinux
alpinelinux
CVE-2017-10790
2017-07-02 03:29:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1895
2021-07-02 17:17:23
gentoo
gentoo
GNU Libtasn1: Multiple vulnerabilities
2017-10-13 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2017-0078
2017-10-19 00:00:00