Количество 13
Количество 13
CVE-2020-24659
An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure.
CVE-2020-24659
An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure.
CVE-2020-24659
An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure.
CVE-2020-24659
An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing and then an invalid second handshake occurs. The crash happens in the application's error handling path where the gnutls_deinit function is called after detecting a handshake failure.
CVE-2020-24659
An issue was discovered in GnuTLS before 3.6.15. A server can trigger ...
openSUSE-SU-2020:1743-1
Security update for gnutls
openSUSE-SU-2020:1724-1
Security update for gnutls
SUSE-SU-2020:2988-1
Security update for gnutls
SUSE-SU-2020:2864-2
Security update for gnutls
SUSE-SU-2020:2864-1
Security update for gnutls
GHSA-wx7m-j6j8-xm63
An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure.
ELSA-2020-5483
ELSA-2020-5483: gnutls security and bug fix update (MODERATE)
BDU:2022-00225
Уязвимость клиента TLS 1.3 библиотеки безопасности транспортного уровня GnuTLS, связанная с записью за границами буфера, позволяющая нарушителю вызвать отказ в обслуживании
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-24659 An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure. | CVSS3: 7.5 | 3% Низкий | больше 5 лет назад |
 | CVE-2020-24659 An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure. | CVSS3: 7.5 | 3% Низкий | больше 5 лет назад |
 | CVE-2020-24659 An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure. | CVSS3: 7.5 | 3% Низкий | больше 5 лет назад |
 | CVE-2020-24659 An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing and then an invalid second handshake occurs. The crash happens in the application's error handling path where the gnutls_deinit function is called after detecting a handshake failure. | CVSS3: 7.5 | 3% Низкий | больше 5 лет назад |
| CVE-2020-24659 An issue was discovered in GnuTLS before 3.6.15. A server can trigger ... | CVSS3: 7.5 | 3% Низкий | больше 5 лет назад |
 | openSUSE-SU-2020:1743-1 Security update for gnutls | 3% Низкий | больше 5 лет назад | |
| openSUSE-SU-2020:1724-1 Security update for gnutls | 3% Низкий | больше 5 лет назад | |
| SUSE-SU-2020:2988-1 Security update for gnutls | 3% Низкий | больше 5 лет назад | |
| SUSE-SU-2020:2864-2 Security update for gnutls | 3% Низкий | больше 3 лет назад | |
| SUSE-SU-2020:2864-1 Security update for gnutls | 3% Низкий | больше 5 лет назад | |
| GHSA-wx7m-j6j8-xm63 An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing, and then an invalid second handshake occurs. The crash happens in the application's error handling path, where the gnutls_deinit function is called after detecting a handshake failure. | CVSS3: 7.5 | 3% Низкий | больше 3 лет назад |
| ELSA-2020-5483 ELSA-2020-5483: gnutls security and bug fix update (MODERATE) | около 5 лет назад | ||
 | BDU:2022-00225 Уязвимость клиента TLS 1.3 библиотеки безопасности транспортного уровня GnuTLS, связанная с записью за границами буфера, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 3% Низкий | больше 5 лет назад |
Уязвимостей на страницу