Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0092

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2014-0092
Last Modified 19 Apr 2014 12:45:58
Published 06 Mar 2014 07:10:53
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-0092

Summary

lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

Vulnerable Systems

Application

  • Gnutls 3.1.0

  • Gnutls 3.1.1

  • Gnutls 3.1.10

  • Gnutls 3.1.11

  • Gnutls 3.1.12

  • Gnutls 3.1.13

  • Gnutls 3.1.14

  • Gnutls 3.1.15

  • Gnutls 3.1.16

  • Gnutls 3.1.17

  • Gnutls 3.1.18

  • Gnutls 3.1.19

  • Gnutls 3.1.2

  • Gnutls 3.1.20

  • Gnutls 3.1.21

  • Gnutls 3.1.3

  • Gnutls 3.1.4

  • Gnutls 3.1.5

  • Gnutls 3.1.6

  • Gnutls 3.1.7

  • Gnutls 3.1.8

  • Gnutls 3.1.9

  • Gnutls 3.2.0

  • Gnutls 3.2.1

  • Gnutls 3.2.10

  • Gnutls 3.2.11

  • Gnutls 3.2.2

  • Gnutls 3.2.3

  • Gnutls 3.2.4

  • Gnutls 3.2.5

  • Gnutls 3.2.6

  • Gnutls 3.2.7

  • Gnutls 3.2.8

  • Gnutls 3.2.8.1

  • Gnutls 3.2.9


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=1069865

UBUNTU - USN-2127-1

DEBIAN - DSA-2869

SECUNIA - 57204

SECUNIA - 57103

SECUNIA - 56933

REDHAT - RHSA-2014:0247

REDHAT - RHSA-2014:0246

SUSE - SUSE-SU-2014:0323

SUSE - SUSE-SU-2014:0321

SUSE - SUSE-SU-2014:0319

CONFIRM - http://gnutls.org/security.html#GNUTLS-SA-2014-2

SUSE - openSUSE-SU-2014:0346

SUSE - openSUSE-SU-2014:0328

SUSE - openSUSE-SU-2014:0325

SUSE - SUSE-SU-2014:0324

SUSE - SUSE-SU-2014:0322

SUSE - SUSE-SU-2014:0320

SECUNIA - 57321

SECUNIA - 57274

SECUNIA - 57260

SECUNIA - 57254

REDHAT - RHSA-2014:0288

SUSE - SUSE-SU-2014:0445

REDHAT - RHSA-2014:0339


Last Updated: 27 May 2016 11:04:38