Описание
ELSA-2014-0247: gnutls security update (IMPORTANT)
[1.4.1-14]
- Renamed gnutls-1.4.1-cve-2014-0092-1.patch to cve-2014-5138.patch
- Renamed gnutls-1.4.1-cve-2014-0092-2.patch to cve-2014-0092.patch
[1.4.1-13]
- fix issues of CVE-2014-0092 (#1069888)
[1.4.1-12]
- fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch (#966754)
[1.4.1-11]
- fix CVE-2013-1619 - fix TLS-CBC timing attack (#908238)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
gnutls
1.4.1-14.el5_10
gnutls-devel
1.4.1-14.el5_10
gnutls-utils
1.4.1-14.el5_10
Oracle Linux x86_64
gnutls
1.4.1-14.el5_10
gnutls-devel
1.4.1-14.el5_10
gnutls-utils
1.4.1-14.el5_10
Oracle Linux i386
gnutls
1.4.1-14.el5_10
gnutls-devel
1.4.1-14.el5_10
gnutls-utils
1.4.1-14.el5_10
Связанные CVE
Связанные уязвимости
GnuTLS before 2.7.6, when the GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag is not enabled, treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates, a different vulnerability than CVE-2014-1959.
GnuTLS before 2.7.6, when the GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag is not enabled, treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates, a different vulnerability than CVE-2014-1959.
GnuTLS before 2.7.6, when the GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag is not enabled, treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates, a different vulnerability than CVE-2014-1959.
GnuTLS before 2.7.6, when the GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag ...