Gnu

Gnutls

74 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 87.26%
  • Veröffentlicht 09.11.2009 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:50

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Secu...

  • EPSS 2.15%
  • Veröffentlicht 12.08.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:07

libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's (1) Common Name (CN) or (2) Subject Alternative Name (SAN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof a...

  • EPSS 4.51%
  • Veröffentlicht 30.07.2009 19:30:00
  • Zuletzt bearbeitet 16.06.2026 23:09:23

The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers to spoof certificat...

  • EPSS 1.43%
  • Veröffentlicht 30.04.2009 20:30:00
  • Zuletzt bearbeitet 16.06.2026 23:07:13

gnutls-cli in GnuTLS before 2.6.6 does not verify the activation and expiration times of X.509 certificates, which allows remote attackers to successfully present a certificate that is (1) not yet valid or (2) no longer valid, related to lack of time...

Exploit
  • EPSS 3.9%
  • Veröffentlicht 30.04.2009 20:30:00
  • Zuletzt bearbeitet 16.06.2026 23:07:13

lib/gnutls_pk.c in libgnutls in GnuTLS 2.5.0 through 2.6.5 generates RSA keys stored in DSA structures, instead of the intended DSA keys, which might allow remote attackers to spoof signatures on certificates or have unspecified other impact by lever...

Exploit
  • EPSS 7.92%
  • Veröffentlicht 30.04.2009 20:30:00
  • Zuletzt bearbeitet 16.06.2026 23:07:13

lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key ...

  • EPSS 1.88%
  • Veröffentlicht 13.11.2008 01:00:01
  • Zuletzt bearbeitet 16.06.2026 22:58:53

The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed certificate, which allows man-in-the-middle attackers t...

Exploit
  • EPSS 5.46%
  • Veröffentlicht 08.08.2008 19:41:00
  • Zuletzt bearbeitet 16.06.2026 22:53:40

Use-after-free vulnerability in the _gnutls_handshake_hash_buffers_clear function in lib/gnutls_handshake.c in libgnutls in GnuTLS 2.3.5 through 2.4.0 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via...

  • EPSS 4.95%
  • Veröffentlicht 21.05.2008 13:24:00
  • Zuletzt bearbeitet 16.06.2026 22:52:49

Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service (buffer over-read and crash) via a certain integer value in the Ran...

Exploit
  • EPSS 5.77%
  • Veröffentlicht 21.05.2008 13:24:00
  • Zuletzt bearbeitet 16.06.2026 22:52:48

The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 continues to process Client Hello messages within a TLS message after one has already been processed, which allows remote attackers to c...