Oval Definition:	oval:org.mitre.oval:def:12790
Revision Date: 2014-06-23 Version: 19 Title: DSA-1719-1 gnutls13 -- design flaw Description: Martin von Gagern discovered that GNUTLS, an implementation of the TLS/SSL protocol, handles verification of X.509 certificate chains incorrectly if a self-signed certificate is configured as a trusted certificate. This could cause clients to accept forged server certificates as genuine. In addition, this update tightens the checks for X.509v1 certificates which causes GNUTLS to reject certain certificate chains it accepted before. For the stable distribution, this problem has been fixed in version 1.4.4-3+etch3. For the unstable distribution, this problem has been fixed in version 2.4.2-3 of the gnutls26 package. We recommend that you upgrade your gnutls13 packages. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2008-4989 DSA-1719-1 Platform(s): Debian GNU/Linux 4.0 Product(s): gnutls13 Definition Synopsis Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND gnutls-doc DPKG is earlier than 1.4.4-3+etch3 OR Architecture depended section Supported architectures section Installed architecture is s390 OR Installed architecture is mips OR Installed architecture is alpha OR Installed architecture is powerpc AND Packages section libgnutls13 DPKG is earlier than 1.4.4-3+etch2 OR libgnutls-dev DPKG is earlier than 1.4.4-3+etch3 OR libgnutls13-dbg DPKG is earlier than 1.4.4-3+etch3 OR Architecture depended section Supported architectures section Installed architecture is s390 OR Installed architecture is ia64 OR Installed architecture is mipsel AND gnutls-bin DPKG is earlier than 1.4.4-3+etch2 OR Supported platform section Installed architecture is hppa AND Packages section libgnutls-dev DPKG is earlier than 1.4.4-3+etch3 OR gnutls-bin DPKG is earlier than 1.4.4-3+etch3 OR libgnutls13 DPKG is earlier than 1.4.4-3+etch3 OR libgnutls13-dbg DPKG is earlier than 1.4.4-3+etch2
BACK