{"id": "USN-348-1", "bulletinFamily": "unix", "title": "GnuTLS vulnerability", "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.", "published": "2006-09-19T00:00:00", "modified": "2006-09-19T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://usn.ubuntu.com/348-1/", "reporter": "Ubuntu", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4790"], "cvelist": ["CVE-2006-4790"], "type": "ubuntu", "lastseen": "2018-08-31T00:09:27", "history": [{"bulletin": {"affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13.1ubuntu1.2", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "5.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13ubuntu0.3", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls12 - 1.2.9-2ubuntu1.1", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-14ubuntu1.1", "packageVersion": "any"}], "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.", "edition": 2, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "af7ee1ee381edfd5fcd5a0c3ff3b374e6f3a3500d35a3e665dfef59d1ab0c6b9", "hashmap": [{"hash": "b451bf8cbf445700420a367c1cc92ef6", "key": "cvelist"}, {"hash": "0dee911d43a028e6a1611946986017d8", "key": "references"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "modified"}, {"hash": "39689a7011581f652e9357c2510b32f7", "key": "title"}, {"hash": "1d41c853af58d3a7ae54990ce29417d8", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "00e6ac05b51c6ae9e0e9d8492ba3d437", "key": "description"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "3d945423f8e9496c429a5d8c65b4604f", "key": "reporter"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "published"}, {"hash": "1b5ae840fb6926a3df196317a214ec1a", "key": "affectedPackage"}, {"hash": "086ed6117fcf7ec7513b1fd2c1ea5a35", "key": "href"}], "history": [], "href": "https://usn.ubuntu.com/348-1/", "id": "USN-348-1", "lastseen": "2018-08-30T20:08:58", "modified": "2006-09-19T00:00:00", "objectVersion": "1.3", "published": "2006-09-19T00:00:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4790"], "reporter": "Ubuntu", "title": "GnuTLS vulnerability", "type": "ubuntu", "viewCount": 0}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T20:08:58"}, {"bulletin": {"affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13.1ubuntu1.2", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "5.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13ubuntu0.3", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls12 - 1.2.9-2ubuntu1.1", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-14ubuntu1.1", "packageVersion": "any"}], "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.", "edition": 1, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "3567e94af6404b10c24740791e034a1a17635d950c315e15dc009e45c59e60ac", "hashmap": [{"hash": "b451bf8cbf445700420a367c1cc92ef6", "key": "cvelist"}, {"hash": "0dee911d43a028e6a1611946986017d8", "key": "references"}, {"hash": "26769fd423968d45be7383413e2552f1", "key": "cvss"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "modified"}, {"hash": "39689a7011581f652e9357c2510b32f7", "key": "title"}, {"hash": "1d41c853af58d3a7ae54990ce29417d8", "key": "type"}, {"hash": "00e6ac05b51c6ae9e0e9d8492ba3d437", "key": "description"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "3d945423f8e9496c429a5d8c65b4604f", "key": "reporter"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "published"}, {"hash": "1b5ae840fb6926a3df196317a214ec1a", "key": "affectedPackage"}, {"hash": "086ed6117fcf7ec7513b1fd2c1ea5a35", "key": "href"}], "history": [], "href": "https://usn.ubuntu.com/348-1/", "id": "USN-348-1", "lastseen": "2018-03-29T18:20:08", "modified": "2006-09-19T00:00:00", "objectVersion": "1.3", "published": "2006-09-19T00:00:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4790"], "reporter": "Ubuntu", "title": "GnuTLS vulnerability", "type": "ubuntu", "viewCount": 0}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-03-29T18:20:08"}], "edition": 3, "hashmap": [{"key": "affectedPackage", "hash": "1b5ae840fb6926a3df196317a214ec1a"}, {"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "b451bf8cbf445700420a367c1cc92ef6"}, {"key": "cvss", "hash": "26769fd423968d45be7383413e2552f1"}, {"key": "description", "hash": "00e6ac05b51c6ae9e0e9d8492ba3d437"}, {"key": "href", "hash": "086ed6117fcf7ec7513b1fd2c1ea5a35"}, {"key": "modified", "hash": "0ef402baca9df3aceb5c351585aaa46e"}, {"key": "published", "hash": "0ef402baca9df3aceb5c351585aaa46e"}, {"key": "references", "hash": "0dee911d43a028e6a1611946986017d8"}, {"key": "reporter", "hash": "3d945423f8e9496c429a5d8c65b4604f"}, {"key": "title", "hash": "39689a7011581f652e9357c2510b32f7"}, {"key": "type", "hash": "1d41c853af58d3a7ae54990ce29417d8"}], "hash": "3567e94af6404b10c24740791e034a1a17635d950c315e15dc009e45c59e60ac", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13.1ubuntu1.2", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "5.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13ubuntu0.3", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls12 - 1.2.9-2ubuntu1.1", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-14ubuntu1.1", "packageVersion": "any"}]}

{"cve": [{"lastseen": "2017-10-11T11:06:47", "references": ["http://sunsolve.sun.com/search/document.do?assetkey=1-26-102970-1", "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1", "http://www.vupen.com/english/advisories/2006/3899", "http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001212.html", "http://www.ubuntu.com/usn/usn-348-1", "http://www.vupen.com/english/advisories/2006/3635", "http://www.gnu.org/software/gnutls/security.html", "http://www.mandriva.com/security/advisories?name=MDKSA-2006:166", "http://www.securityfocus.com/bid/20027", "https://exchange.xforce.ibmcloud.com/vulnerabilities/28953", "http://securitytracker.com/id?1016844", "http://support.avaya.com/elmodocs2/security/ASA-2006-250.htm", "http://security.gentoo.org/glsa/glsa-200609-15.xml", "http://www.redhat.com/support/errata/RHSA-2006-0680.html", "http://www.debian.org/security/2006/dsa-1182", "http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html", "http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html", "http://www.novell.com/linux/security/advisories/2006_23_sr.html", "http://www.vupen.com/english/advisories/2007/2289"], "description": "verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.", "edition": 3, "reporter": "NVD", "published": "2006-09-14T15:07:00", "title": "CVE-2006-4790", "type": "cve", "enchantments": {"score": {"modified": "2017-10-11T11:06:47", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:9937", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9937"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-4790"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:9937", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:9937"}], "modified": "2017-10-10T21:31:16", "cpe": ["cpe:/a:gnu:gnutls:1.2.11", "cpe:/a:gnu:gnutls:1.0.25", "cpe:/a:gnu:gnutls:1.2.4", "cpe:/a:gnu:gnutls:1.1.23", "cpe:/a:gnu:gnutls:1.0.17", "cpe:/a:gnu:gnutls:1.3.0", "cpe:/a:gnu:gnutls:1.0.24", "cpe:/a:gnu:gnutls:1.1.15", "cpe:/a:gnu:gnutls:1.0.20", "cpe:/a:gnu:gnutls:1.3.3", "cpe:/a:gnu:gnutls:1.2.8.1a1", "cpe:/a:gnu:gnutls:1.4.0", "cpe:/a:gnu:gnutls:1.2.7", "cpe:/a:gnu:gnutls:1.1.20", "cpe:/a:gnu:gnutls:1.2.2", "cpe:/a:gnu:gnutls:1.3.5", "cpe:/a:gnu:gnutls:1.0.23", "cpe:/a:gnu:gnutls:1.1.17", "cpe:/a:gnu:gnutls:1.2.0", "cpe:/a:gnu:gnutls:1.1.22", "cpe:/a:gnu:gnutls:1.2.6", "cpe:/a:gnu:gnutls:1.1.19", "cpe:/a:gnu:gnutls:1.0.18", "cpe:/a:gnu:gnutls:1.1.14", "cpe:/a:gnu:gnutls:1.2.8", "cpe:/a:gnu:gnutls:1.1.18", "cpe:/a:gnu:gnutls:1.2.10", "cpe:/a:gnu:gnutls:1.3.1", "cpe:/a:gnu:gnutls:1.4.1", "cpe:/a:gnu:gnutls:1.3.2", "cpe:/a:gnu:gnutls:1.2.1", "cpe:/a:gnu:gnutls:1.0.22", "cpe:/a:gnu:gnutls:1.1.21", "cpe:/a:gnu:gnutls:1.2.3", "cpe:/a:gnu:gnutls:1.1.16", "cpe:/a:gnu:gnutls:1.2.9", "cpe:/a:gnu:gnutls:1.0.19", "cpe:/a:gnu:gnutls:1.3.4", "cpe:/a:gnu:gnutls:1.0.21", "cpe:/a:gnu:gnutls:1.2.5"], "id": "CVE-2006-4790", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4790", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "openvas": [{"lastseen": "2017-07-24T12:50:03", "references": [], "pluginID": "57893", "description": "The remote host is missing updates announced in\nadvisory GLSA 200609-15.", "edition": 2, "reporter": "Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Gentoo Security Advisory GLSA 200609-15 (gnutls)", "type": "openvas", "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57893", "id": "OPENVAS:57893", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"GnuTLS fails to handle excess data which could allow an attacker to forge a\nPKCS #1 v1.5 signature.\";\ntag_solution = \"All GnuTLS users should update both packages:\n\n # emerge --sync\n # emerge --update --ask --verbose '>=net-libs/gnutls-1.4.4'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200609-15\nhttp://bugs.gentoo.org/show_bug.cgi?id=147682\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200609-15.\";\n\n \n\nif(description)\n{\n script_id(57893);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"Gentoo Security Advisory GLSA 200609-15 (gnutls)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-libs/gnutls\", unaffected: make_list(\"ge 1.4.4\"), vulnerable: make_list(\"lt 1.4.4\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-07-02T21:10:26", "references": [], "pluginID": "57467", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "edition": 1, "reporter": "Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-04T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "FreeBSD Ports: gnutls, gnutls-devel", "type": "openvas", "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2016-09-20T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57467", "id": "OPENVAS:57467", "sourceData": "#\n#VID 64bf6234-520d-11db-8f1a-000a48049292\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from vuxml or freebsd advisories\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following packages are affected:\n gnutls gnutls-devel\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\n\nhttp://secunia.com/advisories/21937\nhttp://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html\nhttp://www.vuxml.org/freebsd/64bf6234-520d-11db-8f1a-000a48049292.html\";\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\nif(description)\n{\n script_id(57467);\n script_version(\"$Revision: 4118 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-20 07:32:38 +0200 (Tue, 20 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)\");\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"FreeBSD Ports: gnutls, gnutls-devel\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\n\ntxt = \"\";\nvuln = 0;\nbver = portver(pkg:\"gnutls\");\nif(!isnull(bver) && revcomp(a:bver, b:\"1.4.4\")<0) {\n txt += 'Package gnutls version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"gnutls-devel\");\nif(!isnull(bver) && revcomp(a:bver, b:\"1.4.4\")<0) {\n txt += 'Package gnutls-devel version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-07-26T08:55:18", "references": [], "pluginID": "65366", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 2, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for IBM Java2 JRE and SDK", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2017-07-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=65366", "id": "OPENVAS:65366", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5015753.nasl 6666 2017-07-11 13:13:36Z cfischer $\n# Description: Security update for IBM Java2 JRE and SDK\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_id(65366);\n script_version(\"$Revision: 6666 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-11 15:13:36 +0200 (Tue, 11 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"SLES9: Security update for IBM Java2 JRE and SDK\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-07-24T12:50:02", "references": [], "pluginID": "57406", "description": "The remote host is missing an update to gnutls11\nannounced via advisory DSA 1182-1.\n\nDaniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package\nthat could allow an attacker to generate a forged signature that GNU TLS\nwill accept as valid.", "edition": 2, "reporter": "Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com", "published": "2008-01-17T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Debian Security Advisory DSA 1182-1 (gnutls11)", "type": "openvas", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57406", "id": "OPENVAS:57406", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_1182_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 1182-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_solution = \"For the stable distribution (sarge) this problem has been fixed in\nversion 1.0.16-13.2sarge2.\n\nThe unstable distribution (sid) does no longer contain gnutls11, for\ngnutls13 this problem has been fixed in version 1.4.4-1.\n\nWe recommend that you upgrade your GNU TLS package.\n\n https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201182-1\";\ntag_summary = \"The remote host is missing an update to gnutls11\nannounced via advisory DSA 1182-1.\n\nDaniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package\nthat could allow an attacker to generate a forged signature that GNU TLS\nwill accept as valid.\";\n\n\nif(description)\n{\n script_id(57406);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 23:13:11 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"Debian Security Advisory DSA 1182-1 (gnutls11)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"gnutls-bin\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgnutls11\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgnutls11-dbg\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgnutls11-dev\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-04-06T11:37:35", "references": [], "pluginID": "136141256231065366", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 1, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for IBM Java2 JRE and SDK", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231065366", "id": "OPENVAS:136141256231065366", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5015753.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Security update for IBM Java2 JRE and SDK\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.65366\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"SLES9: Security update for IBM Java2 JRE and SDK\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-12-12T11:21:05", "references": ["2007-010"], "pluginID": "850066", "description": "Check for the Version of IBMJava2", "edition": 3, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-01-28T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "SuSE Update for IBMJava2 SUSE-SA:2007:010", "type": "openvas", "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790", "CVE-2006-6731", "CVE-2006-4339", "CVE-2006-6736", "CVE-2006-6737", "CVE-2006-6745"], "modified": "2017-12-08T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850066", "id": "OPENVAS:850066", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2007_010.nasl 8050 2017-12-08 09:34:29Z santu $\n#\n# SuSE Update for IBMJava2 SUSE-SA:2007:010\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Various security problems and bugs have been fixed in the IBMJava\n JRE and SDK.\n\n The IBM Java packages were updated to:\n - IBM Java 1.4.2 to Service Refresh 7.\n - IBM JAVA 1.3.10 to Service Refresh 10.\n\n It contains several security fixes also fixed in SUN Java including:\n\n - CVE-2006-4339: fix for the RSA exponent padding attack.\n - CVE-2006-6737: 2 unspecified vulnerabilities that\n allow untrusted applets to access data in other applets.\n - CVE-2006-6745: Multiple unspecified vulnerabilities that allow\n applets to gain privileges related to serialization bugs in the JRE.\n - CVE-2006-6731: Multiple buffer overflows in java image handling\n routines that allow attackers to potentially read/write/execute\n local files.\n\n A full overview is at:\n http://www-128.ibm.com/developerworks/java/jdk/alerts/\n\n The update also contains important timezone updates:\n - US daylight saving time update starting 2007.\n - Western Australia daylight savings time introduction in December 2006.\n - A general update to current timezone data-set.\";\n\ntag_impact = \"remote code execution\";\ntag_affected = \"IBMJava2 on SuSE Linux Enterprise Server 8, SUSE SLES 9, Open Enterprise Server, Novell Linux POS 9, SUSE SLES 10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_id(850066);\n script_version(\"$Revision: 8050 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 10:34:29 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-28 13:40:10 +0100 (Wed, 28 Jan 2009)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2007-010\");\n script_cve_id(\"CVE-2006-4339\", \"CVE-2006-4790\", \"CVE-2006-6731\", \"CVE-2006-6736\", \"CVE-2006-6737\", \"CVE-2006-6745\");\n script_name( \"SuSE Update for IBMJava2 SUSE-SA:2007:010\");\n\n script_summary(\"Check for the Version of IBMJava2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"OES\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.4.2~0.76\", rls:\"OES\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"OES\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLES9\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.4.2~0.76\", rls:\"SLES9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"SLES9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLES10\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm\", rpm:\"java-1_4_2-ibm~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm-devel\", rpm:\"java-1_4_2-ibm-devel~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm-jdbc\", rpm:\"java-1_4_2-ibm-jdbc~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm-plugin\", rpm:\"java-1_4_2-ibm-plugin~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLESSr8\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.3.1~237\", rls:\"SLESSr8\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.3.1~237\", rls:\"SLESSr8\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"NLPOS9\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.4.2~0.76\", rls:\"NLPOS9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"NLPOS9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:47:00", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=147682", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4790"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "1.4.4", "packageName": "net-libs/gnutls", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nGnuTLS is an implementation of SSL 3.0 and TLS 1.0. \n\n### Description\n\nverify.c fails to properly handle excess data in digestAlgorithm.parameters field while generating a hash when using an RSA key with exponent 3. RSA keys that use exponent 3 are commonplace. \n\n### Impact\n\nRemote attackers could forge PKCS #1 v1.5 signatures that are signed with an RSA key, preventing GnuTLS from correctly verifying X.509 and other certificates that use PKCS. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll GnuTLS users should update both packages: \n \n \n # emerge --sync\n # emerge --update --ask --verbose \">=net-libs/gnutls-1.4.4\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2006-09-26T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "gentoo", "title": "GnuTLS: RSA Signature Forgery", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-26T00:00:00", "id": "GLSA-200609-15", "href": "https://security.gentoo.org/glsa/200609-15", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:42:30", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageFilename": "gnutls-1.0.20-3.2.3.ia64.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-devel-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageFilename": "gnutls-1.0.20-3.2.3.x86_64.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ia64.rpm", "packageName": "gnutls-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageFilename": "gnutls-devel-1.0.20-3.2.3.x86_64.rpm", "packageName": "gnutls-devel", "operator": "lt"}], "description": " [1.0.20-3.2.3]\n - detect forged signatures - CVE-2006-4790 (#206411), patch\n backported from upstream ", "edition": 3, "reporter": "Oracle", "published": "2006-11-30T00:00:00", "title": "Important gnutls security update ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-11-30T00:00:00", "id": "ELSA-2006-0680", "href": "http://linux.oracle.com/errata/ELSA-2006-0680.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "nessus": [{"lastseen": "2018-09-02T00:03:52", "references": ["https://www.redhat.com/security/data/cve/CVE-2006-4790.html", "http://rhn.redhat.com/errata/RHSA-2006-0680.html"], "pluginID": "22360", "description": "Updated gnutls packages that fix a security issue are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and protocols such as TLS. GnuTLS includes libtasn1, a library developed for ASN.1 structures management that includes DER encoding and decoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5 signatures. Where an RSA key with exponent 3 is used it may be possible for an attacker to forge a PKCS #1 v1.5 signature that would be incorrectly verified by implementations that do not check for excess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of the Bleichenbacker attack. This issue affects applications that use GnuTLS to verify X.509 certificates as well as other uses of PKCS #1 v1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the Evolution client when connecting to an Exchange server or when publishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain a backported patch from the GnuTLS maintainers to correct this issue.", "edition": 6, "reporter": "Tenable", "published": "2006-09-15T00:00:00", "title": "RHEL 4 : gnutls (RHSA-2006:0680)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-07-25T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:gnutls-devel", "cpe:/o:redhat:enterprise_linux:4", "p-cpe:/a:redhat:enterprise_linux:gnutls"], "id": "REDHAT-RHSA-2006-0680.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22360", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0680. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22360);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/07/25 18:58:04\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"RHSA\", value:\"2006:0680\");\n\n script_name(english:\"RHEL 4 : gnutls (RHSA-2006:0680)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gnutls packages that fix a security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed\nfor ASN.1 structures management that includes DER encoding and\ndecoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\nsignatures. Where an RSA key with exponent 3 is used it may be\npossible for an attacker to forge a PKCS #1 v1.5 signature that would\nbe incorrectly verified by implementations that do not check for\nexcess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant\nof the Bleichenbacker attack. This issue affects applications that use\nGnuTLS to verify X.509 certificates as well as other uses of PKCS #1\nv1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\nEvolution client when connecting to an Exchange server or when\npublishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain\na backported patch from the GnuTLS maintainers to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2006-4790.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2006-0680.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls and / or gnutls-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/15\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 4.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2006:0680\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL4\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls / gnutls-devel\");\n }\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:44:15", "references": [], "pluginID": "24552", "description": "verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.\n\nThe provided packages have been patched to correct this issues.", "edition": 5, "reporter": "Tenable", "published": "2007-02-18T00:00:00", "title": "Mandrake Linux Security Advisory : gnutls (MDKSA-2006:166)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:libgnutls11-devel", "cpe:/o:mandriva:linux:2006", "p-cpe:/a:mandriva:linux:gnutls", "p-cpe:/a:mandriva:linux:lib64gnutls11", "p-cpe:/a:mandriva:linux:lib64gnutls11-devel", "p-cpe:/a:mandriva:linux:libgnutls11"], "id": "MANDRAKE_MDKSA-2006-166.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=24552", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2006:166. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(24552);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2018/07/19 20:59:14\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_xref(name:\"MDKSA\", value:\"2006:166\");\n\n script_name(english:\"Mandrake Linux Security Advisory : gnutls (MDKSA-2006:166)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent\n3, does not properly handle excess data in the\ndigestAlgorithm.parameters field when generating a hash, which allows\nremote attackers to forge a PKCS #1 v1.5 signature that is signed by\nthat RSA key and prevents GnuTLS from correctly verifying X.509 and\nother certificates that use PKCS, a variant of CVE-2006-4339.\n\nThe provided packages have been patched to correct this issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gnutls11-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgnutls11-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2006\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/02/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2006.0\", reference:\"gnutls-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gnutls11-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gnutls11-devel-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgnutls11-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgnutls11-devel-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:46:37", "references": ["http://support.novell.com/security/cve/CVE-2006-4790.html"], "pluginID": "41101", "description": "A security problem in the GNU TLS library has been found :\n\nIf an RSA key with exponent 3 is used, the PKCS padding gets removed before generating a hash, which allows remote attackers to forge a PKCS signature that apapears to be signed by that RSA key and prevents gnutls from correctly verifying the certificate.\n\nThis bug has been tracked by the Mitre CVE ID CVE-2006-4790.", "edition": 4, "reporter": "Tenable", "published": "2009-09-24T00:00:00", "title": "SuSE9 Security Update : gnutls (YOU Patch Number 11228)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2012-04-23T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE9_11228.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=41101", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(41101);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2012/04/23 18:14:41 $\");\n\n script_cve_id(\"CVE-2006-4790\");\n\n script_name(english:\"SuSE9 Security Update : gnutls (YOU Patch Number 11228)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 9 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A security problem in the GNU TLS library has been found :\n\nIf an RSA key with exponent 3 is used, the PKCS padding gets removed\nbefore generating a hash, which allows remote attackers to forge a\nPKCS signature that apapears to be signed by that RSA key and prevents\ngnutls from correctly verifying the certificate.\n\nThis bug has been tracked by the Mitre CVE ID CVE-2006-4790.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2006-4790.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply YOU patch number 11228.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/09/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 9 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SUSE9\", reference:\"gnutls-1.0.8-26.10\")) flag++;\nif (rpm_check(release:\"SUSE9\", reference:\"gnutls-devel-1.0.8-26.10\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-02T00:03:56", "references": [], "pluginID": "27928", "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2007-11-10T00:00:00", "title": "Ubuntu 5.04 / 5.10 / 6.06 LTS : gnutls11, gnutls12 vulnerability (USN-348-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-08-06T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dev", "p-cpe:/a:canonical:ubuntu_linux:libgnutls11", "p-cpe:/a:canonical:ubuntu_linux:libgnutls-dev", "p-cpe:/a:canonical:ubuntu_linux:libgnutls12", "cpe:/o:canonical:ubuntu_linux:5.04", "p-cpe:/a:canonical:ubuntu_linux:gnutls-bin", "p-cpe:/a:canonical:ubuntu_linux:libgnutls12-dbg", "cpe:/o:canonical:ubuntu_linux:5.10", "p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dbg", "cpe:/o:canonical:ubuntu_linux:6.06:-:lts"], "id": "UBUNTU_USN-348-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27928", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-348-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27928);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/08/06 14:03:15\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"USN\", value:\"348-1\");\n\n script_name(english:\"Ubuntu 5.04 / 5.10 / 6.06 LTS : gnutls11, gnutls12 vulnerability (USN-348-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The GnuTLS library did not sufficiently check the padding of PKCS #1\nv1.5 signatures if the exponent of the public key is 3 (which is\nwidely used for CAs). This could be exploited to forge signatures\nwithout the need of the secret key.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gnutls-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls12\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls12-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:5.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:5.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:6.06:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/11/10\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2006-2018 Canonical, Inc. / NASL script (C) 2007-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(5\\.04|5\\.10|6\\.06)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 5.04 / 5.10 / 6.06\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"5.04\", pkgname:\"gnutls-bin\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libgnutls11\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libgnutls11-dbg\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libgnutls11-dev\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"gnutls-bin\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libgnutls11\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libgnutls11-dbg\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libgnutls11-dev\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"gnutls-bin\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls-dev\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls11\", pkgver:\"1.0.16-14ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls11-dbg\", pkgver:\"1.0.16-14ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls11-dev\", pkgver:\"1.0.16-14ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls12\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls12-dbg\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls-bin / libgnutls-dev / libgnutls11 / libgnutls11-dbg / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:44:29", "references": ["http://www.nessus.org/u?4cc429ac", "http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html"], "pluginID": "22501", "description": "Secunia reports :\n\nA vulnerability has been reported in GnuTLS, which can be exploited by malicious people to bypass certain security restrictions.\n\nThe vulnerability is caused due to an error in the verification of certain signatures. If a RSA key with exponent 3 is used, it may be possible to forge PKCS #1 v1.5 signatures signed with that key.", "edition": 4, "reporter": "Tenable", "published": "2006-10-05T00:00:00", "title": "FreeBSD : gnutls -- RSA Signature Forgery Vulnerability (64bf6234-520d-11db-8f1a-000a48049292)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2016-05-09T00:00:00", "cpe": ["p-cpe:/a:freebsd:freebsd:gnutls", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:gnutls-devel"], "id": "FREEBSD_PKG_64BF6234520D11DB8F1A000A48049292.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22501", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2016 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22501);\n script_version(\"$Revision: 1.13 $\");\n script_cvs_date(\"$Date: 2016/05/09 15:44:46 $\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"Secunia\", value:\"21937\");\n\n script_name(english:\"FreeBSD : gnutls -- RSA Signature Forgery Vulnerability (64bf6234-520d-11db-8f1a-000a48049292)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Secunia reports :\n\nA vulnerability has been reported in GnuTLS, which can be exploited by\nmalicious people to bypass certain security restrictions.\n\nThe vulnerability is caused due to an error in the verification of\ncertain signatures. If a RSA key with exponent 3 is used, it may be\npossible to forge PKCS #1 v1.5 signatures signed with that key.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html\"\n );\n # http://www.freebsd.org/ports/portaudit/64bf6234-520d-11db-8f1a-000a48049292.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?4cc429ac\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/10/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/10/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2016 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"gnutls<1.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"gnutls-devel<1.4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:43:30", "references": ["http://www.debian.org/security/2006/dsa-1182"], "pluginID": "22724", "description": "Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid.", "edition": 6, "reporter": "Tenable", "published": "2006-10-14T00:00:00", "title": "Debian DSA-1182-1 : gnutls11 - cryptographic weakness", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-08-09T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:3.1", "p-cpe:/a:debian:debian_linux:gnutls11"], "id": "DEBIAN_DSA-1182.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22724", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-1182. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22724);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/08/09 17:06:36\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_xref(name:\"DSA\", value:\"1182\");\n\n script_name(english:\"Debian DSA-1182-1 : gnutls11 - cryptographic weakness\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic\npackage that could allow an attacker to generate a forged signature\nthat GNU TLS will accept as valid.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2006/dsa-1182\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the GNU TLS package.\n\nFor the stable distribution (sarge) this problem has been fixed in\nversion 1.0.16-13.2sarge2.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/10/14\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.1\", prefix:\"gnutls-bin\", reference:\"1.0.16-13.2sarge2\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libgnutls11\", reference:\"1.0.16-13.2sarge2\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libgnutls11-dbg\", reference:\"1.0.16-13.2sarge2\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libgnutls11-dev\", reference:\"1.0.16-13.2sarge2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:52:03", "references": ["http://support.novell.com/security/cve/CVE-2006-4790.html"], "pluginID": "29447", "description": "A security problem was fixed in the GNU TLS library, where excess data was not checked during signature checking with RSA keys with exponent 3.\n\nThis problem could be used to fake those RSA signatures.\n(CVE-2006-4790)", "edition": 4, "reporter": "Tenable", "published": "2007-12-13T00:00:00", "title": "SuSE 10 Security Update : gnutls (ZYPP Patch Number 2117)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2012-05-17T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE_GNUTLS-2117.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=29447", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(29447);\n script_version (\"$Revision: 1.10 $\");\n script_cvs_date(\"$Date: 2012/05/17 11:05:46 $\");\n\n script_cve_id(\"CVE-2006-4790\");\n\n script_name(english:\"SuSE 10 Security Update : gnutls (ZYPP Patch Number 2117)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A security problem was fixed in the GNU TLS library, where excess data\nwas not checked during signature checking with RSA keys with exponent\n3.\n\nThis problem could be used to fake those RSA signatures.\n(CVE-2006-4790)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2006-4790.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 2117.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED10\", sp:0, reference:\"gnutls-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:0, reference:\"gnutls-devel-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-32bit-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-devel-32bit-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"gnutls-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"gnutls-devel-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-32bit-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-devel-32bit-1.2.10-13.5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-02T00:01:07", "references": ["http://www.nessus.org/u?a1a59365", "http://www.nessus.org/u?846b06f6"], "pluginID": "22427", "description": "Updated gnutls packages that fix a security issue are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and protocols such as TLS. GnuTLS includes libtasn1, a library developed for ASN.1 structures management that includes DER encoding and decoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5 signatures. Where an RSA key with exponent 3 is used it may be possible for an attacker to forge a PKCS #1 v1.5 signature that would be incorrectly verified by implementations that do not check for excess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of the Bleichenbacker attack. This issue affects applications that use GnuTLS to verify X.509 certificates as well as other uses of PKCS #1 v1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the Evolution client when connecting to an Exchange server or when publishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain a backported patch from the GnuTLS maintainers to correct this issue.", "edition": 5, "reporter": "Tenable", "published": "2006-09-22T00:00:00", "title": "CentOS 4 : gnutls (CESA-2006:0680)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-06-27T00:00:00", "cpe": ["p-cpe:/a:centos:centos:gnutls-devel", "cpe:/o:centos:centos:4", "p-cpe:/a:centos:centos:gnutls"], "id": "CENTOS_RHSA-2006-0680.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22427", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0680 and \n# CentOS Errata and Security Advisory 2006:0680 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22427);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/06/27 18:42:24\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"RHSA\", value:\"2006:0680\");\n\n script_name(english:\"CentOS 4 : gnutls (CESA-2006:0680)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gnutls packages that fix a security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed\nfor ASN.1 structures management that includes DER encoding and\ndecoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\nsignatures. Where an RSA key with exponent 3 is used it may be\npossible for an attacker to forge a PKCS #1 v1.5 signature that would\nbe incorrectly verified by implementations that do not check for\nexcess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant\nof the Bleichenbacker attack. This issue affects applications that use\nGnuTLS to verify X.509 certificates as well as other uses of PKCS #1\nv1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\nEvolution client when connecting to an Exchange server or when\npublishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain\na backported patch from the GnuTLS maintainers to correct this issue.\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2006-September/013275.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a1a59365\"\n );\n # http://lists.centos.org/pipermail/centos-announce/2006-September/013276.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?846b06f6\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/22\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:49:20", "references": ["http://support.novell.com/security/cve/CVE-2006-4790.html"], "pluginID": "29468", "description": "This update brings IBM Java 1.4.2 to Service Release 7.\n\nIt contains several undisclosed security fixes, including the fix for the RSA attack similar to Mitre CVE ID CVE-2006-4790.\n\nIt also contains timezone updates :\n\n - US daylightsaving time update starting 2007.\n\n - Western Australia daylight savings time introduction in December 2006.\n\n - Update to current timezone dataset.", "edition": 4, "reporter": "Tenable", "published": "2007-12-13T00:00:00", "title": "SuSE 10 Security Update : IBM Java (ZYPP Patch Number 2461)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2012-05-17T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE_JAVA-1_4_2-IBM-2461.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=29468", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(29468);\n script_version (\"$Revision: 1.9 $\");\n script_cvs_date(\"$Date: 2012/05/17 11:12:38 $\");\n\n script_cve_id(\"CVE-2006-4790\");\n\n script_name(english:\"SuSE 10 Security Update : IBM Java (ZYPP Patch Number 2461)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update brings IBM Java 1.4.2 to Service Release 7.\n\nIt contains several undisclosed security fixes, including the fix for\nthe RSA attack similar to Mitre CVE ID CVE-2006-4790.\n\nIt also contains timezone updates :\n\n - US daylightsaving time update starting 2007.\n\n - Western Australia daylight savings time introduction in\n December 2006.\n\n - Update to current timezone dataset.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2006-4790.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 2461.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/01/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"java-1_4_2-ibm-1.4.2.s4-23.10\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"java-1_4_2-ibm-devel-1.4.2.s4-23.10\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, cpu:\"i586\", reference:\"java-1_4_2-ibm-jdbc-1.4.2.s4-23.10\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, cpu:\"i586\", reference:\"java-1_4_2-ibm-plugin-1.4.2.s4-23.10\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-02T00:04:05", "references": ["https://security.gentoo.org/glsa/200609-15"], "pluginID": "22459", "description": "The remote host is affected by the vulnerability described in GLSA-200609-15 (GnuTLS: RSA Signature Forgery)\n\n verify.c fails to properly handle excess data in digestAlgorithm.parameters field while generating a hash when using an RSA key with exponent 3. RSA keys that use exponent 3 are commonplace.\n Impact :\n\n Remote attackers could forge PKCS #1 v1.5 signatures that are signed with an RSA key, preventing GnuTLS from correctly verifying X.509 and other certificates that use PKCS.\n Workaround :\n\n There is no known workaround at this time.", "edition": 5, "reporter": "Tenable", "published": "2006-09-27T00:00:00", "title": "GLSA-200609-15 : GnuTLS: RSA Signature Forgery", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-07-11T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:gnutls"], "id": "GENTOO_GLSA-200609-15.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22459", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200609-15.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22459);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/07/11 17:09:25\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"GLSA\", value:\"200609-15\");\n\n script_name(english:\"GLSA-200609-15 : GnuTLS: RSA Signature Forgery\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200609-15\n(GnuTLS: RSA Signature Forgery)\n\n verify.c fails to properly handle excess data in\n digestAlgorithm.parameters field while generating a hash when using an\n RSA key with exponent 3. RSA keys that use exponent 3 are commonplace.\n \nImpact :\n\n Remote attackers could forge PKCS #1 v1.5 signatures that are signed\n with an RSA key, preventing GnuTLS from correctly verifying X.509 and\n other certificates that use PKCS.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200609-15\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All GnuTLS users should update both packages:\n # emerge --sync\n # emerge --update --ask --verbose '>=net-libs/gnutls-1.4.4'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/27\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"net-libs/gnutls\", unaffected:make_list(\"ge 1.4.4\"), vulnerable:make_list(\"lt 1.4.4\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"GnuTLS\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:19", "references": [], "description": "=========================================================== \r\nUbuntu Security Notice USN-348-1 September 18, 2006\r\ngnutls11, gnutls12 vulnerability\r\nCVE-2006-4790\r\n===========================================================\r\n\r\nA security issue affects the following Ubuntu releases:\r\n\r\nUbuntu 5.04\r\nUbuntu 5.10\r\nUbuntu 6.06 LTS\r\n\r\nThis advisory also applies to the corresponding versions of\r\nKubuntu, Edubuntu, and Xubuntu.\r\n\r\nThe problem can be corrected by upgrading your system to the\r\nfollowing package versions:\r\n\r\nUbuntu 5.04:\r\n libgnutls11 1.0.16-13ubuntu0.3\r\n\r\nUbuntu 5.10:\r\n libgnutls11 1.0.16-13.1ubuntu1.2\r\n\r\nUbuntu 6.06 LTS:\r\n libgnutls11 1.0.16-14ubuntu1.1\r\n libgnutls12 1.2.9-2ubuntu1.1\r\n\r\nAfter a standard system upgrade you need to reboot your computer to\r\neffect the necessary changes.\r\n\r\nDetails follow:\r\n\r\nThe GnuTLS library did not sufficiently check the padding of PKCS #1\r\nv1.5 signatures if the exponent of the public key is 3 &#40;which is\r\nwidely used for CAs&#41;. This could be exploited to forge signatures\r\nwithout the need of the secret key.\r\n\r\n\r\nUpdated packages for Ubuntu 5.04:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13ubuntu0.3.diff.gz\r\n Size/MD5: 339767 c5bff2326fcb68ed0336e25449012068\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13ubuntu0.3.dsc\r\n Size/MD5: 830 c0793d93e9c5b93567099347fa446c72\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\r\n Size/MD5: 1504638 7b410fa3c563c7988e434a8c8671b3cd\r\n\r\n amd64 architecture &#40;Athlon64, Opteron, EM64T Xeon&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 217660 bba5c5e0d5f59354f6b3336367be937f\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 575482 a62525c690862f1b4927cc7f55173d3b\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 392664 c78b8dbf6725d02e19da5707d3335124\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 327142 bb345c39bf9e7879432b566bf5e1a235\r\n\r\n i386 architecture &#40;x86 compatible Intel/AMD&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 203632 a467a4155ed992414884c86fc8120e5f\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 555946 1ffdced169899150a35b540c373b1a0c\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 357486 1bbbbc936c849e2ec1b2f6432506a86a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 293636 02023e0e58310001f3ed4d4b31dacb27\r\n\r\n powerpc architecture &#40;Apple Macintosh G3/G4/G5&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 218566 3dfdc586e1df5663ab8edbb3735ec48c\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 1416126 f51c3ede362394ec62ca07e345d2c4b7\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 389076 9904c61c7aae79e2d1700b33c92a371a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 299668 fac8cd974bcca326209e4c78eff25eac\r\n\r\nUpdated packages for Ubuntu 5.10:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13.1ubuntu1.2.diff.gz\r\n Size/MD5: 340309 49a5050c08af0f81729b45f5f3c8d22d\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13.1ubuntu1.2.dsc\r\n Size/MD5: 829 cbd5adc73119254f416328c52203502b\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\r\n Size/MD5: 1504638 7b410fa3c563c7988e434a8c8671b3cd\r\n\r\n amd64 architecture &#40;Athlon64, Opteron, EM64T Xeon&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 217668 1ed174a692537d419a0cfe8d126aee7e\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 501184 076e79bc654983d5980bd5ad1556db6a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 398968 d60fddde214fe3a9ba132f5aa31421f6\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 332338 bfdb04fcbc4cc1b35466309e6d1ebe68\r\n\r\n i386 architecture &#40;x86 compatible Intel/AMD&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 201838 7e5322c9a0549be64847db789e478f69\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 443744 4e484450ea0c30d50b77878158021c56\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 353510 34cedb7560cf2bc326dc608a73fef028\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 287262 2a22bf7ef42370d27799e9992b183c17\r\n\r\n powerpc architecture &#40;Apple Macintosh G3/G4/G5&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 218960 6ce6df1a4a741c8c12b57ca41ef71d1f\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 498738 abffd68ab815093d0fa33a0ddf09d62b\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 395476 715c6b951b76d873024a80816545df6f\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 304944 66adb0761c8004b85c841fc78eaecd9c\r\n\r\n sparc architecture &#40;Sun SPARC/UltraSPARC&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 205296 10c9919c827341235884044b98c9b9ed\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 438502 747e41cb86f57b80094a3b9624faaa79\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 395448 a73794337f96dd436969f1ce1e1b2ed2\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 293108 59e5c1dbc23d906229efdc5fd8b43acb\r\n\r\nUpdated packages for Ubuntu 6.06 LTS:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls11_1.0.16-14ubuntu1.1.diff.gz\r\n Size/MD5: 340592 3d897a1f6c852961a51e1ed2abd57700\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls11_1.0.16-14ubuntu1.1.dsc\r\n Size/MD5: 782 ed4ea38a746c3a5c01df97efc1f56684\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\r\n Size/MD5: 1504638 7b410fa3c563c7988e434a8c8671b3cd\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/gnutls12_1.2.9-2ubuntu1.1.diff.gz\r\n Size/MD5: 547210 43343fb58d09ef0157163d61e4b856ac\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/gnutls12_1.2.9-2ubuntu1.1.dsc\r\n Size/MD5: 846 de642e0252450068d262032caa108ab3\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/gnutls12_1.2.9.orig.tar.gz\r\n Size/MD5: 3305475 4e1a2e9c22c7d6459d5eb5e6484a19c4\r\n\r\n amd64 architecture &#40;Athlon64, Opteron, EM64T Xeon&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 288060 ab7b29cc7797add5c945fee37ea08e13\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 490866 8f8f9b54a0a351df5cfeabceb90337bd\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_amd64.deb\r\n Size/MD5: 492192 14d5105bfb4f1346dc24cdb02282a989\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_amd64.deb\r\n Size/MD5: 398922 167aca29f3fb079e0ae59b171d3f80f6\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_amd64.deb\r\n Size/MD5: 332602 5c80ebe2410af742c3f1e5ebf3f061c4\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 642186 2d6e15d7f57c64dc6a08de1a837f882f\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 419956 77892c1022bdb4e422bb84654bf81275\r\n\r\n i386 architecture &#40;x86 compatible Intel/AMD&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 271890 52a8d52f5db1ee7d81573fe3ef8909d0\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 444560 e62ca7e54d740dae765cff30e2877fea\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_i386.deb\r\n Size/MD5: 434914 66cd4ae0e53bac620537befa71b71471\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_i386.deb\r\n Size/MD5: 353266 b7882d6444d9946074df3ccda4609548\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_i386.deb\r\n Size/MD5: 287556 60a01efc8102af04b9418dfdd053d60d\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 578054 1b0af9f8bbfdca6ab65781d1a761d1f8\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 372796 931456f16edb71bc2f3724597b7d25a5\r\n\r\n powerpc architecture &#40;Apple Macintosh G3/G4/G5&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 288282 da78d3aa3f6dc6f55819a7a7b87a8ef9\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 483764 4b9bc5d06ecef2ccfd1bf78cb3a38be3\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_powerpc.deb\r\n Size/MD5: 488222 8809195502f4beb96deb7fa5c5db1971\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_powerpc.deb\r\n Size/MD5: 395568 c1a26fe60afbdafdb944ff41dab4b8c1\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_powerpc.deb\r\n Size/MD5: 304804 c33b1d0470d894ea91d9cabbe921d35e\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 635046 71b63e9a190676debea5a40423da233a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 390354 e132049e6323d5d71824379f6bfe57bf\r\n\r\n sparc architecture &#40;Sun SPARC/UltraSPARC&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 273020 8ccad45ebceb81375ac915a14edc73e5\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 480026 9f53727b59d626a0a2cc15ab9bb37331\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_sparc.deb\r\n Size/MD5: 427638 f38fb7a6a633baf4b7100ec839372eab\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_sparc.deb\r\n Size/MD5: 393658 10ceb83747c49a19b98c51c1d72fdc06\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_sparc.deb\r\n Size/MD5: 292130 3a032b8476527064933fea01882e912d\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 570060 22615e4739a2f71f9977b2c683283e28\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 375898 016adf7e48efcbaa949392a352324d2b\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2006-09-19T00:00:00", "title": "[USN-348-1] GnuTLS vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:19", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4790"], "modified": "2006-09-19T00:00:00", "id": "SECURITYVULNS:DOC:14313", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:14313", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:45", "references": ["http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html", "http://secunia.com/advisories/21937"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "gnutls-devel", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "gnutls", "operator": "lt"}], "description": "\nSecunia reports:\n\nA vulnerability has been reported in GnuTLS, which can be\n\t exploited by malicious people to bypass certain security\n\t restrictions.\nThe vulnerability is caused due to an error in the\n\t verification of certain signatures. If a RSA key with\n\t exponent 3 is used, it may be possible to forge PKCS #1\n\t v1.5 signatures signed with that key.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2006-09-08T00:00:00", "title": "gnutls -- RSA Signature Forgery Vulnerability", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-08T00:00:00", "id": "64BF6234-520D-11DB-8F1A-000A48049292", "href": "https://vuxml.freebsd.org/freebsd/64bf6234-520d-11db-8f1a-000a48049292.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "debian": [{"lastseen": "2016-09-02T18:24:22", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_alpha.deb", "arch": "alpha", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_alpha.deb", "arch": "alpha", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_mips.deb", "arch": "mips", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_mipsel.deb", "arch": "mipsel", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_mipsel.deb", "arch": "mipsel", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_i386.deb", "arch": "i686", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_m68k.deb", "arch": "m68k", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_powerpc.deb", "arch": "ppc", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_ia64.deb", "arch": "ia64", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_arm.deb", "arch": "arm", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16.orig", "packageFilename": "gnutls11_1.0.16.orig.tar.gz", "arch": "src", "packageName": "gnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_ia64.deb", "arch": "ia64", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_alpha.deb", "arch": "alpha", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_arm.deb", "arch": "arm", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_mipsel.deb", "arch": "mipsel", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_ia64.deb", "arch": "ia64", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_powerpc.deb", "arch": "ppc", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_m68k.deb", "arch": "m68k", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_hppa.deb", "arch": "hppa", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2.diff", "packageFilename": "gnutls11_1.0.16-13.2sarge2.diff.gz", "arch": "src", "packageName": "gnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_arm.deb", "arch": "arm", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_mipsel.deb", "arch": "mipsel", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_mips.deb", "arch": "mips", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_s390.deb", "arch": "s390x", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_arm.deb", "arch": "arm", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_mips.deb", "arch": "mips", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_s390.deb", "arch": "s390x", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_m68k.deb", "arch": "m68k", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_sparc.deb", "arch": "sparc", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_s390.deb", "arch": "s390x", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_mips.deb", "arch": "mips", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_hppa.deb", "arch": "hppa", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_s390.deb", "arch": "s390x", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_sparc.deb", "arch": "sparc", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_i386.deb", "arch": "i686", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_hppa.deb", "arch": "hppa", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_m68k.deb", "arch": "m68k", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_amd64.deb", "arch": "x86-64", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_hppa.deb", "arch": "hppa", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_sparc.deb", "arch": "sparc", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_ia64.deb", "arch": "ia64", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_i386.deb", "arch": "i686", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_amd64.deb", "arch": "x86-64", "packageName": "libgnutls11-dbg", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls11_1.0.16-13.2sarge2.dsc", "arch": "src", "packageName": "gnutls11", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_alpha.deb", "arch": "alpha", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_sparc.deb", "arch": "sparc", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_amd64.deb", "arch": "x86-64", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_amd64.deb", "arch": "x86-64", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_powerpc.deb", "arch": "ppc", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_powerpc.deb", "arch": "ppc", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_i386.deb", "arch": "i686", "packageName": "libgnutls11-dev", "operator": "lt"}], "edition": 1, "description": "Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid.\n\nFor the stable distribution (sarge) this problem has been fixed in version 1.0.16-13.2sarge2.\n\nThe unstable distribution (sid) does no longer contain gnutls11, for gnutls13 this problem has been fixed in version 1.4.4-1.\n\nWe recommend that you upgrade your GNU TLS package.", "reporter": "Debian", "published": "2006-09-22T00:00:00", "type": "debian", "title": "gnutls11 -- cryptographic weakness", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-22T00:00:00", "id": "DSA-1182", "href": "http://www.debian.org/security/dsa-1182", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "redhat": [{"lastseen": "2017-09-08T13:20:24", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390x.rpm", "arch": "s390x", "operator": "lt"}], "description": "The GnuTLS Library provides support for cryptographic algorithms and\r\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed for\r\nASN.1 structures management that includes DER encoding and decoding.\r\n\r\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\r\nsignatures. Where an RSA key with exponent 3 is used it may be possible for\r\nan attacker to forge a PKCS #1 v1.5 signature that would be incorrectly\r\nverified by implementations that do not check for excess data in the RSA\r\nexponentiation result of the signature.\r\n\r\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of\r\nthe Bleichenbacker attack. This issue affects applications that use GnuTLS\r\nto verify X.509 certificates as well as other uses of PKCS #1 v1.5.\r\n(CVE-2006-4790)\r\n\r\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\r\nEvolution client when connecting to an Exchange server or when publishing\r\ncalendar information to a WebDAV server.\r\n\r\nUsers are advised to upgrade to these updated packages, which contain a\r\nbackported patch from the GnuTLS maintainers to correct this issue.", "reporter": "RedHat", "published": "2006-09-14T04:00:00", "type": "redhat", "title": "(RHSA-2006:0680) gnutls security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:49:52", "id": "RHSA-2006:0680", "href": "https://access.redhat.com/errata/RHSA-2006:0680", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:25", "references": [], "edition": 1, "description": "# No description provided by the source\n\n## References:\nVendor Specific News/Changelog Entry: http://www.gnu.org/software/gnutls/security.html\n[Vendor Specific Advisory URL](http://www.us.debian.org/security/2006/dsa-1182)\n[Vendor Specific Advisory URL](http://lists.suse.com/archive/suse-security-announce/2006-Sep/0011.html)\n[Vendor Specific Advisory URL](http://www.mandriva.com/security/advisories?name=MDKSA-2006:166)\n[Vendor Specific Advisory URL](http://www.gentoo.org/security/en/glsa/glsa-200609-15.xml)\n[Secunia Advisory ID:21942](https://secuniaresearch.flexerasoftware.com/advisories/21942/)\n[Secunia Advisory ID:22097](https://secuniaresearch.flexerasoftware.com/advisories/22097/)\n[Secunia Advisory ID:21973](https://secuniaresearch.flexerasoftware.com/advisories/21973/)\n[Secunia Advisory ID:23803](https://secuniaresearch.flexerasoftware.com/advisories/23803/)\n[Secunia Advisory ID:21937](https://secuniaresearch.flexerasoftware.com/advisories/21937/)\n[Secunia Advisory ID:22049](https://secuniaresearch.flexerasoftware.com/advisories/22049/)\n[Secunia Advisory ID:22084](https://secuniaresearch.flexerasoftware.com/advisories/22084/)\n[Secunia Advisory ID:22080](https://secuniaresearch.flexerasoftware.com/advisories/22080/)\n[Secunia Advisory ID:25762](https://secuniaresearch.flexerasoftware.com/advisories/25762/)\nRedHat RHSA: RHSA-2006:0680\nOther Advisory URL: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102970-1\nOther Advisory URL: http://www.ubuntu.com/usn/usn-348-1\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2007-Jan/0010.html\nMail List Post: http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001212.html\nMail List Post: http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html\n[CVE-2006-4790](https://vulners.com/cve/CVE-2006-4790)\n", "reporter": "OSVDB", "published": "2006-09-08T06:49:08", "type": "osvdb", "title": "GnuTLS RSA Key PKCS #1 v1.5 Signature Forgery", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4790"], "modified": "2006-09-08T06:49:08", "href": "https://vulners.com/osvdb/OSVDB:28778", "id": "OSVDB:28778", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "centos": [{"lastseen": "2017-10-12T14:45:00", "references": ["http://pasi.pirhonen.eu/", "https://rhn.redhat.com/errata/RHSA-2006-0680.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "any", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "any", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390x", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390x", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2006:0680\n\n\nThe GnuTLS Library provides support for cryptographic algorithms and\r\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed for\r\nASN.1 structures management that includes DER encoding and decoding.\r\n\r\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\r\nsignatures. Where an RSA key with exponent 3 is used it may be possible for\r\nan attacker to forge a PKCS #1 v1.5 signature that would be incorrectly\r\nverified by implementations that do not check for excess data in the RSA\r\nexponentiation result of the signature.\r\n\r\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of\r\nthe Bleichenbacker attack. This issue affects applications that use GnuTLS\r\nto verify X.509 certificates as well as other uses of PKCS #1 v1.5.\r\n(CVE-2006-4790)\r\n\r\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\r\nEvolution client when connecting to an Exchange server or when publishing\r\ncalendar information to a WebDAV server.\r\n\r\nUsers are advised to upgrade to these updated packages, which contain a\r\nbackported patch from the GnuTLS maintainers to correct this issue.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013239.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013240.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013275.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013276.html\n\n**Affected packages:**\ngnutls\ngnutls-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2006-0680.html", "edition": 2, "reporter": "CentOS Project", "published": "2006-09-14T14:44:53", "title": "gnutls security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-20T19:22:00", "href": "http://lists.centos.org/pipermail/centos-announce/2006-September/013239.html", "id": "CESA-2006:0680", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "suse": [{"lastseen": "2016-09-04T11:46:49", "references": [], "affectedPackage": [{"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}], "description": "Various security problems and bugs have been fixed in the IBMJava JRE and SDK.\n#### Solution\nThere is no known workaround, please install the update packages.", "edition": 1, "reporter": "Suse", "published": "2007-01-18T16:13:31", "title": "remote code execution in IBMJava2", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790", "CVE-2006-6731", "CVE-2006-4339", "CVE-2006-6736", "CVE-2006-6737", "CVE-2006-6745"], "modified": "2007-01-18T16:13:31", "id": "SUSE-SA:2007:010", "href": "http://lists.opensuse.org/opensuse-security-announce/2007-01/msg00025.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}