[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 8472 Download | Alert*

This update for gnutls fixes the following issues: * CVE-2024-0567: Fixed an incorrect rejection of certificate chains with distributed trust . * CVE-2024-0553: Fixed a timing attack against the RSA-PSK key exchange, which could lead to the leakage of sensitive data .

The host is installed with Apple Mac OS 14 before 14.3 or Apple Safari before 17.3 on Apple Mac OS 12, Apple Mac OS 13 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle access issues On successful exploitation, a maliciously crafted webpage may be able to fingerprint the user.

The host is installed with Atlassian Confluence Server 8.0.0 before 8.5.4 and is prone to a template injection vulnerability. A flaw is present in the application which fails to properly handle unspecified vectors. Successful exploitation could lead to remote code execution.

gnutls28: GNU TLS library Several security issues were fixed in GnuTLS.

gnutls28: GNU TLS library Several security issues were fixed in GnuTLS.

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures.

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures.

[3.7.6-23.3] - Fixes for CVE-2023-5981, CVE-2024-0553, CVE-2024-0567

A vulnerability was found in GnuTLS, where a cockpit rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack

The gnutls packages provide the GNU Transport Layer Security library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.


Pages:      Start    561    562    563    564    565    566    567    568    569    570    571    572    573    574    ..   847

© SecPod Technologies