Download
| Alert*
|
oval:org.secpod.oval:def:708877
gnutls28: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:2600544 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. oval:org.secpod.oval:def:5800234 The gnutls package provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: * gnutls: vulnerable to Minerva side-channel information leak * gnutls: potential crash during chain building/verification For mor ... oval:org.secpod.oval:def:2600602 The gnutls package provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. oval:org.secpod.oval:def:509302 The gnutls package provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: gnutls: vulnerable to Minerva side-channel information leak gnutls: potential crash during chain building/verification For more de ... oval:org.secpod.oval:def:1507470 [3.6.16-8.3] - Fix memleak with older GMP [3.6.16-8.2] - Fix timing side-channel in deterministic ECDSA oval:org.secpod.oval:def:1507471 [3.7.6-23.4] - Fix timing side-channel in deterministic ECDSA - Fix potential crash during chain building/verification oval:org.secpod.oval:def:99589 gnutls28: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:509199 The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix: gnutls: vulnerable to Minerva side-channel information leak gnutls: potential crash during chain building/verification For more d ... oval:org.secpod.oval:def:509188 The gnutls package provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. This package update fixes a timing side-channel in deterministic ECDSA. Security Fix: gnutls: vulnerable to Minerva side-channel information leak ... oval:org.secpod.oval:def:19500688 A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic behavior in systems like GnuTLS, leading to side-channel leaks. In specific scenarios, such as when using the GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE flag, it can result in a noticeable step in nonce ... oval:org.secpod.oval:def:99101 gnutls28: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:1507511 [3.8.3-4] - Bump release to ensure el9 package is greater than el9_* packages [3.8.3-3] - Bump release to ensure el9 package is greater than el9_* packages [3.8.3-2] - Fix timing side-channel in deterministic ECDSA - Fix potential crash during chain building/verification [3.8.3-1] - Update to gnut ... oval:org.secpod.oval:def:99584 gnutls28: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:4501579 The gnutls package provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. This package update fixes a timing side-channel in deterministic ECDSA. Security Fix: * gnutls: vulnerable to Minerva side-channel information lea ... oval:org.secpod.oval:def:127447 GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other ... oval:org.secpod.oval:def:89051754 This update for gnutls fixes the following issues: * CVE-2024-28834: Fixed side-channel in the deterministic ECDSA * CVE-2024-28835: Fixed denial of service during certificate chain verification Other fixes: \- jitterentropy: Release the memory of the entropy collector when using jitterentropy wit ... oval:org.secpod.oval:def:127398 GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other ... oval:org.secpod.oval:def:708915 gnutls28: GNU TLS library Details: USN-6733-1 fixed vulnerabilities in GnuTLS. This update provides the corresponding updates for Ubuntu 24.04 LTS. Original advisory Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:2501374 The gnutls package provide the GNU Transport Layer Security library, oval:org.secpod.oval:def:3302498 Security update for gnutls oval:org.secpod.oval:def:89051939 This update for gnutls fixes the following issues: * CVE-2024-28834: Fixed side-channel in the deterministic ECDSA * CVE-2024-28835: Fixed denial of service during certificate chain verification Other fixes: \- jitterentropy: Release the memory of the entropy collector when using jitterentropy wit ... |
