CVE search results

11 – 14 of 14 results

Detailed view

Sort by:

CVE-2008-1950

Medium priority

Fixed

Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service (buffer over-read and crash) via a certain...

3 affected packages

gnutls12, gnutls13, gnutls26

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
gnutls12	—	—	—	—	—
gnutls13	—	—	—	—	—
gnutls26	—	—	—	—	—

CVE-2008-1949

Medium priority

Fixed

The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 continues to process Client Hello messages within a TLS message after one has already been processed, which allows...

3 affected packages

gnutls12, gnutls13, gnutls26

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
gnutls12	—	—	—	—	—
gnutls13	—	—	—	—	—
gnutls26	—	—	—	—	—

CVE-2008-1948

Medium priority

Fixed

The _gnutls_server_name_recv_params function in lib/ext_server_name.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hello message during extension...

3 affected packages

gnutls12, gnutls13, gnutls26

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
gnutls12	—	—	—	—	—
gnutls13	—	—	—	—	—
gnutls26	—	—	—	—	—

CVE-2006-4790

Unknown priority

Fixed

verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5...

3 affected packages

gnutls11, gnutls12, gnutls13

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
gnutls11	—	—	—	—	—
gnutls12	—	—	—	—	—
gnutls13	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports