Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200805-20
https://security.gentoo.org/
Severity: High
Title: GnuTLS: Execution of arbitrary code
Date: May 21, 2008
Bugs: #222823
ID: 200805-20
Synopsis
=======
Multiple vulnerabilities might allow for the execution of arbitrary
code in daemons using GnuTLS.
Background
=========
GnuTLS is an implementation of Secure Sockets Layer (SSL) 3.0 and
Transport Layer Security (TLS) 1.0, 1.1 and 1.2.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-libs/gnutls < 2.2.5 >= 2.2.5
==========
Ossi Herrala and Jukka Taimisto of Codenomicon reported three
vulnerabilities in libgnutls of GnuTLS:
* "Client Hello" messages containin...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.