Information on source package gnutls28

Available versions

ReleaseVersion
jessie3.3.8-6+deb8u7
jessie (security)3.3.8-6+deb8u6
stretch3.5.8-5+deb9u3
stretch (security)3.5.8-5+deb9u1
buster3.5.18-1
sid3.5.18-1

Open unimportant issues

BugjessiestretchbustersidDescription
TEMP-0000000-1BAE4DvulnerablefixedfixedfixedGNUTLS-SA-2016-2: certificate verification issue
CVE-2011-3389vulnerablevulnerablevulnerablevulnerableThe SSL protocol, as used in certain configurations in Microsoft ...

Resolved issues

BugDescription
CVE-2017-7869GnuTLS before 2017-02-20 has an out-of-bounds write caused by an ...
CVE-2017-7507GnuTLS version 3.5.12 and earlier is vulnerable to a NULL pointer ...
CVE-2017-5337Multiple heap-based buffer overflows in the read_attribute function in ...
CVE-2017-5336Stack-based buffer overflow in the cdk_pk_get_keyid function in ...
CVE-2017-5335The stream reading functions in lib/opencdk/read-packet.c in GnuTLS ...
CVE-2017-5334Double free vulnerability in the gnutls_x509_ext_import_proxy function ...
CVE-2016-7444The gnutls_ocsp_resp_check_crt function in lib/x509/ocsp.c in GnuTLS ...
CVE-2016-4456The "GNUTLS_KEYLOGFILE" environment variable in gnutls 3.4.12 allows ...
CVE-2015-8313fail to check the first byte of the padding in CBC modes
CVE-2015-7575Mozilla Network Security Services (NSS) before 3.20.2, as used in ...
CVE-2015-6251Double free vulnerability in GnuTLS before 3.3.17 and 3.4.x before ...
CVE-2015-3308Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before ...
CVE-2015-0294certificate algorithm consistency checking issue
CVE-2015-0282GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature ...
CVE-2014-8564The _gnutls_ecc_ansi_x963_export function in gnutls_ecc.c in GnuTLS ...
CVE-2014-8155GnuTLS before 2.9.10 does not verify the activation and expiration ...
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other ...
CVE-2014-3466Buffer overflow in the read_server_hello function in ...
CVE-2014-3465The gnutls_x509_dn_oid_name function in lib/x509/common.c in GnuTLS ...
CVE-2014-1959lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 ...
CVE-2014-0092lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does ...
CVE-2013-4487Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in ...
CVE-2013-4466Buffer overflow in the dane_query_tlsa function in the DANE library ...
CVE-2013-1619The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, ...
CVE-2013-0169The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as ...
CVE-2012-1663Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows ...
CVE-2012-1573gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before ...
CVE-2012-0390The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain ...
CVE-2009-5138GnuTLS before 2.7.6, when the GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT flag ...

Security announcements

DSA / DLADescription
DSA-3884-1gnutls28 - security update
DSA-3884-1gnutls28 - security update
DSA-3334-1gnutls28 - security update

Search for package or bug name: Reporting problems