Computer Security
[EN] securityvulns.ru no-pyccku


GnuTLS / libtasn1 security vulnerabilities
Published:26.03.2012
Source:
SecurityVulns ID:12291
Type:library
Threat Level:
7/10
Description:Vulnerabilities on TLS and ASN.1 records parsing.
Affected:GNU : gnutls 3.0
 GNU : libtasn1 2.11
CVE:CVE-2011-4128 (Buffer overflow in the gnutls_session_get_data function in lib/gnutls_session.c in GnuTLS 2.12.x before 2.12.14 and 3.x before 3.0.7, when used on a client that performs nonstandard session resumption, allows remote TLS servers to cause a denial of service (application crash) via a large SessionTicket.)
Original documentdocumentMu Dynamics Research Team, Mu Dynamics, Inc. Security Advisories MU-201202-01 and MU-201202-02 for GnuTLS and Libtasn1 (26.03.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod