Oval Definition:
oval:org.mitre.oval:def:23469
Revision Date
:
2014-07-07
Version
:
14
Title
:
RHSA-2014:0246: gnutls security update (Important)
Description
:
lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CESA-2014:0246
CVE-2014-0092
RHSA-2014:0246-00
Platform(s)
:
CentOS Linux 6
Red Hat Enterprise Linux 6
Product(s)
:
gnutls
Definition Synopsis
Redhat 6 or Centos 6 release
The operating system installed on the system is Red Hat Enterprise Linux 6
OR
The operating system installed on the system is CentOS Linux 6.x
AND
Packages section
gnutls-devel is earlier than 0:2.8.5-13.el6_5
OR
gnutls-utils is earlier than 0:2.8.5-13.el6_5
OR
gnutls is earlier than 0:2.8.5-13.el6_5
OR
gnutls-guile is earlier than 0:2.8.5-13.el6_5
BACK