VYPR

rpm package

suse/gnutls&distro=SUSE Linux Enterprise Desktop 12 SP2

pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2

Vulnerabilities (7)

  • CVE-2016-8610HigNov 13, 2017
    affected < 3.2.15-16.1fixed 3.2.15-16.1

    A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amoun

  • CVE-2017-7507HigJun 16, 2017
    affected < 3.2.15-18.3.1fixed 3.2.15-18.3.1

    GnuTLS version 3.5.12 and earlier is vulnerable to a NULL pointer dereference while decoding a status response TLS extension with valid contents. This could lead to a crash of the GnuTLS server application.

  • CVE-2017-7869HigApr 14, 2017
    affected < 3.2.15-18.3.1fixed 3.2.15-18.3.1

    GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_read function in opencdk/read-packet.c. This issue (which is a subset of the vendor's GNUTLS-SA-2017-3 report) is fixed in 3.5.10.

  • CVE-2017-5337CriMar 24, 2017
    affected < 3.2.15-16.1fixed 3.2.15-16.1

    Multiple heap-based buffer overflows in the read_attribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to have unspecified impact via a crafted OpenPGP certificate.

  • CVE-2017-5336CriMar 24, 2017
    affected < 3.2.15-16.1fixed 3.2.15-16.1

    Stack-based buffer overflow in the cdk_pk_get_keyid function in lib/opencdk/pubkey.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via a crafted OpenPGP certificate.

  • CVE-2017-5335HigMar 24, 2017
    affected < 3.2.15-16.1fixed 3.2.15-16.1

    The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a denial of service (out-of-memory error and crash) via a crafted OpenPGP certificate.

  • CVE-2016-7444HigSep 27, 2016
    affected < 3.2.15-16.1fixed 3.2.15-16.1

    The gnutls_ocsp_resp_check_crt function in lib/x509/ocsp.c in GnuTLS before 3.4.15 and 3.5.x before 3.5.4 does not verify the serial length of an OCSP response, which might allow remote attackers to bypass an intended certificate validation mechanism via vectors involving trailin