GnuTLS vulnerability

2014-11-1100:00:00

ubuntu.com

7.2 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

Releases

Ubuntu 14.10

Packages

gnutls28 - GNU TLS library - commandline utilities

Details

Sean Burford discovered that GnuTLS incorrectly handled printing certain
elliptic curve parameters. A malicious remote server or client could use
this issue to cause GnuTLS to crash, resulting in a denial of service, or
possibly execute arbitrary code.

OSVersionArchitecturePackageVersionFilename
Ubuntu14.10noarchgnutls-bin< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchguile-gnutls< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchlibgnutls-deb0-28< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchlibgnutls-dev< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchlibgnutls-openssl27< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchlibgnutls28-dbg< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchlibgnutls28-dev< 3.2.16-1ubuntu2.1UNKNOWN
Ubuntu14.10noarchlibgnutlsxx28< 3.2.16-1ubuntu2.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	14.10	noarch	gnutls-bin	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	guile-gnutls	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	libgnutls-deb0-28	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	libgnutls-dev	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	libgnutls-openssl27	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	libgnutls28-dbg	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	libgnutls28-dev	< 3.2.16-1ubuntu2.1	UNKNOWN
Ubuntu	14.10	noarch	libgnutlsxx28	< 3.2.16-1ubuntu2.1	UNKNOWN