CVE search results

21 – 30 of 52 results

Detailed view

Sort by:

CVE-2015-3308

Low priority

Fixed

Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted CRL distribution point.

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—
gnutls28	—	—	—	—

CVE-2015-0282

Medium priority

Some fixes available 3 of 5

GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspecified vectors.

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—
gnutls28	—	—	—	—

CVE-2015-0294

Low priority

Some fixes available 13 of 15

GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate.

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	Not in release
gnutls28	—	—	—	Fixed

CVE-2014-8155

Low priority

Fixed

GnuTLS before 2.9.10 does not verify the activation and expiration dates of CA certificates, which allows man-in-the-middle attackers to spoof servers via a certificate issued by a CA certificate that is (1) not yet valid or (2)...

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—
gnutls28	—	—	—	—

CVE-2014-8564

Medium priority

Some fixes available 10 of 11

The _gnutls_ecc_ansi_x963_export function in gnutls_ecc.c in GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1)...

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	Not in release
gnutls28	—	—	—	Fixed

CVE-2014-3465

Medium priority

Ignored

The gnutls_x509_dn_oid_name function in lib/x509/common.c in GnuTLS 3.0 before 3.1.20 and 3.2.x before 3.2.10 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted X.509 certificate, related...

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	Not in release
gnutls28	—	—	—	Not affected

CVE-2014-3466

Medium priority

Some fixes available 7 of 8

Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows remote servers to cause a denial of service (memory corruption) or...

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—
gnutls28	—	—	—	—

CVE-2009-5138

Medium priority

Not affected

GnuTLS before 2.7.6, when the GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag is not enabled, treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1...

1 affected package

gnutls26

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—

CVE-2014-0092

Medium priority

Some fixes available 6 of 9

lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a...

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—
gnutls28	—	—	—	—

CVE-2014-1959

Medium priority

Some fixes available 5 of 8

lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a...

2 affected packages

gnutls26, gnutls28

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gnutls26	—	—	—	—
gnutls28	—	—	—	—

Export to JSON

Results by page:

Search CVE reports