Test Kennung:	1.3.6.1.4.1.25623.1.0.70608
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: gnutls
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: gnutls CVE-2011-4128 Buffer overflow in the gnutls_session_get_data function in lib/gnutls_session.c in GnuTLS 2.12.x before 2.12.14 and 3.x before 3.0.7, when used on a client that performs nonstandard session resumption, allows remote TLS servers to cause a denial of service (application crash) via a large SessionTicket. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4128 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077071.html http://www.mandriva.com/security/advisories?name=MDVSA-2012:045 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596 http://openwall.com/lists/oss-security/2011/11/09/2 http://openwall.com/lists/oss-security/2011/11/09/4 RedHat Security Advisories: RHSA-2012:0429 http://rhn.redhat.com/errata/RHSA-2012-0429.html RedHat Security Advisories: RHSA-2012:0488 http://rhn.redhat.com/errata/RHSA-2012-0488.html RedHat Security Advisories: RHSA-2012:0531 http://rhn.redhat.com/errata/RHSA-2012-0531.html http://secunia.com/advisories/48596 http://secunia.com/advisories/48712 http://www.ubuntu.com/usn/USN-1418-1
Copyright	Copyright (C) 2012 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.