Oval Definition:	oval:com.ubuntu.precise:def:20144911000
Revision Date: 2014-07-22 Version: 1 Title: CVE-2014-4911 on Ubuntu 12.04 LTS (precise) - medium. Description: The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before 1.2.11 and 1.3.x before 1.3.8 allows remote attackers to cause a denial of service (crash) via vectors related to the GCM ciphersuites, as demonstrated using the Codenomicon Defensics toolkit. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-4911 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'polarssl' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
BACK