| Revision Date: | 2014-09-08 | Version: | 4 |
| Title: | SUSE-SU-2014:0319-1 -- Security update for gnutls |
| Description: | The GnuTLS library received a critical security fix andother updates: * CVE-2014-0092: The X.509 certificate verification hadincorrect error handling, which could lead to brokencertificates marked as being valid. * CVE-2009-5138: A verification problem in handling V1certificates could also lead to V1 certificates incorrectlybeing handled.Additionally a memory leak in PSK authentication has beenfixed (bnc#835760). |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2009-5138
CVE-2014-0092
SUSE-SU-2014:0319-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 11
SUSE Linux Enterprise Server 11
| Product(s): | gnutls
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section Operation system section
SUSE Linux Enterprise Server 11.x is installed
OR SUSE Linux Enterprise Desktop 11.x is installed
AND Packages match section
gnutls RPM is earlier than 0:2.4.1-24.39.49.1
OR libgnutls26 RPM is earlier than 0:2.4.1-24.39.49.1
OR libgnutls26-32bit RPM is earlier than 0:2.4.1-24.39.49.1
SUSE Linux Enterprise Server 11 release section
SUSE Linux Enterprise Server 11.x is installed
AND libgnutls-extra26 RPM is earlier than 0:2.4.1-24.39.49.1
|