Lucene search

K

PRIOn knowledge basePRION:CVE-2014-0092

HistoryMar 07, 2014 - 12:10 a.m.

Code injection

2014-03-0700:10:00

PRIOn knowledge base

www.prio-n.com

6

6.6 Medium

AI Score

Confidence

Low

0.075 Low

EPSS

Percentile

94.1%

lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CPENameOperatorVersion
gnutlseq3.2.3
gnutlseq3.2.0
gnutlseq3.2.1
gnutlseq3.2.8
gnutlseq3.2.4
gnutlseq3.2.9
gnutlseq3.2.6
gnutlseq3.2.10
gnutlsle3.2.11
gnutlseq3.2.7

Rows per page:

1-10 of 351

References

gnutls.org/security.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00000.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00001.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00002.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00003.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00004.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00005.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00006.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00007.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00009.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00020.html

rhn.redhat.com/errata/RHSA-2014-0246.html

rhn.redhat.com/errata/RHSA-2014-0247.html

rhn.redhat.com/errata/RHSA-2014-0288.html

rhn.redhat.com/errata/RHSA-2014-0339.html

secunia.com/advisories/56933

secunia.com/advisories/57103

secunia.com/advisories/57204

secunia.com/advisories/57254

secunia.com/advisories/57260

secunia.com/advisories/57274

secunia.com/advisories/57321

www.debian.org/security/2014/dsa-2869

www.securityfocus.com/bid/65919

www.ubuntu.com/usn/USN-2127-1

bugzilla.redhat.com/show_bug.cgi?id=1069865

6.6 Medium

AI Score

Confidence

Low

0.075 Low

EPSS

Percentile

94.1%