Lucene search
Ubuntu.comUB:CVE-2012-0390HistoryJan 06, 2012 - 12:00 a.m.
CVE-2012-0390
2012-01-0600:00:00
ubuntu.com
ubuntu.com
15
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
76.2%
The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain
error-handling code only if there is a specific relationship between a
padding length and the ciphertext size, which makes it easier for remote
attackers to recover partial plaintext via a timing side-channel attack, a
related issue to CVE-2011-4108.
Notes
| Author | Note |
|---|---|
| tyhicks | DTLS support was not implemented until gnutls-2.99.0 |
Related
debiancve
debiancve
cvelist
cvelist
cve
cve
nvd
nvd
prion
prion
Sql injection
2012-01-06 01:55:00
Design/Logic Flaw
2012-01-06 01:55:00
Design/Logic Flaw
2012-01-19 19:55:00
f5
f5
K15388 : OpenSSL vulnerability CVE-2011-4108
2014-08-11 00:00:00
SOL15388 - OpenSSL vulnerability CVE-2011-4108
2014-07-17 00:00:00
SOL15417 - OpenSSL vulnerability CVE-2012-0050
2014-07-17 00:00:00
nessus
nessus
openSUSE Security Update : gnutls (openSUSE-SU-2012:0344-1)
2014-06-13 00:00:00
openSUSE Security Update : gnutls (openSUSE-2012-121)
2014-06-13 00:00:00
F5 Networks BIG-IP : OpenSSL vulnerability (SOL15388)
2014-10-10 00:00:00
paloalto
paloalto
OpenSSL Plain Text Recovery Attack Vulnerability
2012-04-27 23:30:00
ubuntucve
ubuntucve
CVE-2011-4108
2012-01-05 00:00:00
CVE-2012-0050
2012-01-19 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 01:09:44
openssl
openssl
Vulnerability in OpenSSL CVE-2011-4108
2012-01-04 00:00:00
Vulnerability in OpenSSL CVE-2012-0050
2012-01-04 00:00:00
openvas
openvas
Fedora Update for openssl FEDORA-2012-0708
2012-04-02 00:00:00
Mandriva Update for openssl MDVSA-2012:011 (openssl)
2012-02-01 00:00:00
FreeBSD Ports: openssl
2012-02-12 00:00:00
freebsd
freebsd
OpenSSL -- DTLS Denial of Service
2012-01-18 00:00:00
OpenSSL -- multiple vulnerabilities
2012-01-04 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: openssl-1.0.0g-1.fc16
2012-01-22 05:27:15
[SECURITY] Fedora 15 Update: openssl-1.0.0g-1.fc15
2012-01-24 07:55:34
[SECURITY] Fedora 16 Update: openssl-1.0.0f-1.fc16
2012-01-11 06:13:34
suse
suse
Security update for gnutls (critical)
2014-03-04 01:04:52
openssl: fixing various security issues (important)
2012-01-16 17:08:14
Security update for OpenSSL (important)
2012-01-16 17:08:28
redhat
redhat
(RHSA-2012:0059) Moderate: openssl security update
2012-01-24 00:00:00
(RHSA-2012:0060) Moderate: openssl security update
2012-01-24 00:00:00
(RHSA-2012:1306) Important: openssl security update
2012-09-24 15:52:11
centos
centos
openssl security update
2012-01-30 20:25:59
openssl security update
2012-01-24 21:54:22
amazon
amazon
Medium: openssl
2012-02-02 14:24:00
debian
debian
[SECURITY] [DSA 2390-1] openssl security update
2012-01-15 20:23:09
aix
aix
Multiple OpenSSL vulnerabilities
2012-03-21 13:02:49
oraclelinux
oraclelinux
openssl security update
2012-01-24 00:00:00
openssl security update
2012-01-24 00:00:00
openssl-fips security update
2015-04-02 00:00:00
osv
osv
openssl - several
2012-01-15 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2012-03-06 00:00:00
securityvulns
securityvulns
OpenSSL library multiple security vulnerabilities
2012-01-20 00:00:00
HP Onboard Administrator multiple security vulnerabilities
2012-06-17 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1939
2021-07-02 17:38:47
ubuntu
ubuntu
OpenSSL vulnerabilities
2012-02-09 00:00:00
cert
cert
ibm
ibm
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
76.2%
Related for UB:CVE-2012-0390