| Revision Date: | 2005-06-01 | Version: | 502 |
| Title: | RHSA-2005:430: gnutls security update (Moderate) |
| Description: | The GnuTLS library implements Secure Sockets Layer (SSL v3) and Transport Layer Security (TLS v1) protocols.
A denial of service bug was found in the GnuTLS library versions prior to 1.0.25. A remote attacker could perform a carefully crafted TLS handshake against a service that uses the GnuTLS library causing the service to crash. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1431 to this issue.
All users of GnuTLS are advised to upgrade to these updated packages and to restart any services which use GnuTLS.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2005-1431
RHSA-2005:430-01
|
| Platform(s): | Red Hat Enterprise Linux 4
| Product(s): | |
| Definition Synopsis |
| Red Hat Enterprise Linux 4 is installed AND Package Information
gnutls-devel is earlier than 0:1.0.20-3.2.1
AND gnutls-devel is signed with Red Hat master key
OR
gnutls is earlier than 0:1.0.20-3.2.1
AND gnutls is signed with Red Hat master key
|