Oval Definition:oval:com.ubuntu.precise:def:20148155000
Revision Date:2015-08-14Version:1
Title:CVE-2014-8155 on Ubuntu 12.04 LTS (precise) - low.
Description:GnuTLS before 2.9.10 does not verify the activation and expiration dates of CA certificates, which allows man-in-the-middle attackers to spoof servers via a certificate issued by a CA certificate that is (1) not yet valid or (2) no longer valid.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-8155
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'gnutls26' package in precise is not affected (note: '2.12.14-5ubuntu3.8').
  • OR NOT While related to the CVE in some way, the 'gnutls28' package in precise is not affected (note: '3.0.11-1ubuntu2').
    • BACK