Lucene search
UbuntuUSN-613-1HistoryMay 21, 2008 - 12:00 a.m.
GnuTLS vulnerabilities
2008-05-2100:00:00
ubuntu.com
33
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.084 Low
EPSS
Percentile
94.5%
Releases
- Ubuntu 8.04
- Ubuntu 7.10
- Ubuntu 7.04
- Ubuntu 6.06
Packages
- gnutls12 -
- gnutls13 -
Details
Multiple flaws were discovered in the connection handling of GnuTLS.
A remote attacker could exploit this to crash applications linked
against GnuTLS, or possibly execute arbitrary code with permissions of
the applicationβs user.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | libgnutls13 | <Β 2.0.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | gnutls-bin | <Β 2.0.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libgnutls-dev | <Β 2.0.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libgnutls13-dbg | <Β 2.0.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libgnutlsxx13 | <Β 2.0.4-1ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgnutls13 | <Β 1.6.3-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | gnutls-bin | <Β 1.6.3-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgnutls-dev | <Β 1.6.3-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgnutls13-dbg | <Β 1.6.3-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgnutlsxx13 | <Β 1.6.3-1ubuntu0.1 | UNKNOWN |
Related
redhat
redhat
(RHSA-2008:0489) Critical: gnutls security update
2008-05-20 00:00:00
(RHSA-2008:0492) Important: gnutls security update
2008-05-20 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : gnutls12, gnutls13 vulnerabilities (USN-613-1)
2008-05-22 00:00:00
openSUSE 10 Security Update : gnutls (gnutls-5275)
2008-09-16 00:00:00
Scientific Linux Security Update : gnutls on SL5.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
GnuTLS < 2.2.5 vulnerability (Linux)
2008-09-06 00:00:00
Fedora Update for gnutls FEDORA-2008-4259
2009-02-17 00:00:00
RedHat Update for gnutls RHSA-2008:0492-01
2009-03-06 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: gnutls-2.0.4-3.fc9
2008-07-26 06:00:37
[SECURITY] Fedora 8 Update: gnutls-1.6.3-3.fc8
2008-05-21 10:57:21
[SECURITY] Fedora 9 Update: gnutls-2.0.4-3.fc9
2008-05-21 11:05:37
slackware
slackware
[slackware-security] gnutls
2008-06-28 22:44:13
debian
debian
[SECURITY] [DSA 1581-1] New gnutls13 packages fix potential code execution
2008-05-20 16:37:41
osv
osv
gnutls13 - potential code execution
2008-05-20 00:00:00
seebug
seebug
GnuTLSε ζΊ’εΊεζη»ζε‘ζΌζ΄
2008-05-22 00:00:00
suse
suse
remote code execution in gnutls
2008-09-17 16:33:28
gentoo
gentoo
GnuTLS: Execution of arbitrary code
2008-05-21 00:00:00
centos
centos
gnutls security update
2008-05-21 20:30:15
gnutls security update
2008-05-22 13:49:09
oraclelinux
oraclelinux
gnutls security update
2008-05-20 00:00:00
gnutls security update
2008-05-20 00:00:00
cert
cert
GnuTLS Client Hello repeat Denial of Service
2008-05-29 00:00:00
GnuTLS Server Name extension Denial of Service
2008-05-29 00:00:00
GnuTLS Pad Length Denial of Service
2008-05-30 00:00:00
prion
prion
Design/Logic Flaw
2008-05-21 13:24:00
Buffer overflow
2008-05-21 13:24:00
Integer overflow
2008-05-21 13:24:00
ubuntucve
ubuntucve
cvelist
cvelist
nvd
nvd
cve
cve
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.084 Low
EPSS
Percentile
94.5%
Related for USN-613-1