Lucene search
SuseSUSE-SU-2014:0758-2HistoryJun 13, 2014 - 2:04 a.m.
Security update for GnuTLS (important)
2014-06-1302:04:36
lists.opensuse.org
9
0.755 High
EPSS
Percentile
97.8%
GnuTLS has been patched to ensure proper parsing of session ids during the
TLS/SSL handshake. Additionally three issues inherited from libtasn1 have
been fixed.
Further information is available at
<a href=“http://www.gnutls.org/security.html#GNUTLS-SA-2014-3”>http://www.gnutls.org/security.html#GNUTLS-SA-2014-3</a>
<<a href=“http://www.gnutls.org/security.html#GNUTLS-SA-2014-3”>http://www.gnutls.org/security.html#GNUTLS-SA-2014-3</a>>
These security issues have been fixed:
* Possible memory corruption during connect (CVE-2014-3466)
* Multiple boundary check issues could allow DoS (CVE-2014-3467)
* asn1_get_bit_der() can return negative bit length (CVE-2014-3468)
* Possible DoS by NULL pointer dereference (CVE-2014-3469)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| SUSE Manager 1.7 for SLE | 11.2 | x86_64 | libgnutls26-32bit | < 2.4.1-24.39.51.1 | libgnutls26-32bit-2.4.1-24.39.51.1.x86_64.rpm |
| SUSE Manager 1.7 for SLE | 11.2 | x86_64 | libgnutls-extra26 | < 2.4.1-24.39.51.1 | libgnutls-extra26-2.4.1-24.39.51.1.x86_64.rpm |
| SUSE Manager 1.7 for SLE | 11.2 | x86_64 | libgnutls26 | < 2.4.1-24.39.51.1 | libgnutls26-2.4.1-24.39.51.1.x86_64.rpm |
| SUSE Manager 1.7 for SLE | 11.2 | x86_64 | gnutls | < 2.4.1-24.39.51.1 | gnutls-2.4.1-24.39.51.1.x86_64.rpm |
Related
redhat
redhat
(RHSA-2014:0594) Important: gnutls security update
2014-06-03 00:00:00
(RHSA-2014:0596) Moderate: libtasn1 security update
2014-06-03 00:00:00
(RHSA-2014:0687) Moderate: libtasn1 security update
2014-06-10 00:00:00
nessus
nessus
CentOS 5 : gnutls (CESA-2014:0594)
2014-06-05 00:00:00
Oracle Linux 5 : gnutls (ELSA-2014-0594)
2014-06-04 00:00:00
SuSE 11.3 Security Update : gnutls (SAT Patch Number 9320)
2014-06-05 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0788-2)
2021-06-09 00:00:00
CentOS Update for gnutls CESA-2014:0594 centos5
2014-06-09 00:00:00
SUSE: Security Advisory for gnutls (SUSE-SU-2014:0758-1)
2015-10-13 00:00:00
suse
suse
Security update for gnutls (important)
2014-06-05 03:04:15
Security update for GnuTLS (important)
2014-06-13 00:04:29
Security update for GnuTLS (important)
2014-06-13 20:04:13
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:03:32
Remote Code Execution (RCE)
2019-01-15 08:52:35
Out-of-Bounds Access
2018-08-13 08:27:26
centos
centos
gnutls security update
2014-06-04 09:31:23
libtasn1 security update
2014-06-04 10:04:23
gnutls security update
2014-06-04 09:21:48
osv
osv
libtasn1-3 - security update
2014-10-26 00:00:00
gnutls26 - security update
2014-06-01 00:00:00
debian
debian
[SECURITY] [DLA 77-1] libtasn1-3 security update
2014-10-26 13:15:15
[SECURITY] [DSA 3056-1] libtasn1-3 security update
2014-10-26 12:44:20
gnutls26 security update
2014-06-02 07:50:57
securityvulns
securityvulns
GnuTLS and libtasn1 multiple security vulnerabilities
2014-06-02 00:00:00
[oss-security] GnuTLS and libtasn1 security fixes
2014-06-02 00:00:00
slackware
slackware
[slackware-security] gnutls
2014-06-06 05:26:16
[slackware-security] libtasn1
2014-06-06 05:26:49
fedora
fedora
[SECURITY] Fedora 19 Update: libtasn1-3.6-1.fc19
2014-06-10 03:06:24
[SECURITY] Fedora 20 Update: libtasn1-3.6-1.fc20
2014-06-04 07:52:16
[SECURITY] Fedora 19 Update: mingw-gnutls-3.1.25-1.fc19
2014-06-10 03:08:23
ubuntu
ubuntu
Libtasn1 vulnerabilities
2014-07-22 00:00:00
GnuTLS vulnerability
2014-06-02 00:00:00
oraclelinux
oraclelinux
libtasn1 security update
2014-07-23 00:00:00
gnutls security update
2014-06-03 00:00:00
libtasn1 security update
2014-06-03 00:00:00
mageia
mageia
Updated libtasn1 packages fix CVE-2014-3467-9
2014-06-02 22:44:30
Updated gnutls packages fix CVE-2104-3465-6
2014-06-02 22:47:21
amazon
amazon
Medium: libtasn1
2014-06-15 16:22:00
Important: gnutls
2014-06-05 15:38:00
gentoo
gentoo
GNU Libtasn1: Multiple vulnerabilities
2014-08-29 00:00:00
GnuTLS: Multiple vulnerabilities
2014-06-13 00:00:00
f5
f5
SOL15423 - GNU Libtasn1 vulnerabilities CVE-2014-3467 and CVE-2014-3468
2014-07-17 00:00:00
K15423 : GNU Libtasn1 vulnerabilities CVE-2014-3467 and CVE-2014-3468
2014-07-17 00:00:00
K15345 : GnuTLS vulnerability CVE-2014-3466
2014-10-17 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1847
2021-07-02 16:58:09
cve
cve
debiancve
debiancve
ubuntucve
ubuntucve
prion
prion
Null pointer dereference
2014-06-05 20:55:00
Buffer overflow
2014-06-03 14:55:00
Out-of-bounds
2014-06-05 20:55:00
freebsd
freebsd
gnutls -- client-side memory corruption
2014-05-14 00:00:00
gnutls -- client-side memory corruption
2014-05-14 00:00:00
thn
thn
Critical GnuTLS Flaw Leaves SSL Clients Vulnerable to Remote Code Execution
2014-06-04 02:15:00
checkpoint_advisories
checkpoint_advisories
GnuTLS Server Hello Session ID Heap Buffer Overflow (CVE-2014-3466)
2014-06-08 00:00:00