openSUSE Build Service

Overview Details Repositories Revisions Requests Users Attributes Meta

update for gnutls

Submitted by Guanjun He (gjhe)

Fixed bugs

bnc#752193

gnutls double free

bnc#753301

gnutls/libtasn1 "asn1_get_length_der()" DER decoding issue

bnc#754223

gnutls: GenericBlockCipher heap corruption DoS

CVE-CVE-2012-1573

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) via a crafte

CVE-CVE-2012-1569

The asn1_get_length_der function in decoding.c in GNU Libtasn1 before 2.12, as used in GnuTLS before 3.0.16 and other products, does not properly handle certain large length values, which allows remote attackers to cause a denial of service (heap memory c

CVE-CVE-2012-1663

Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted certificate list.

Places

Fixed bugs

Selected Binaries

Places