|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu USN-948-1 (gnutls12)|
|Summary:||Ubuntu USN-948-1 (gnutls12)|
|Description:||The remote host is missing an update to gnutls12|
announced via advisory USN-948-1.
It was discovered that GnuTLS did not always properly verify the hash
algorithm of X.509 certificates. If an application linked against GnuTLS
processed a crafted certificate, an attacker could make GnuTLS dereference
a NULL pointer and cause a DoS via application crash.
The problem can be corrected by upgrading your system to the
following package versions:
Ubuntu 6.06 LTS:
In general, a standard system update will make all the necessary changes.
Risk factor : Medium
Common Vulnerability Exposure (CVE) ID: CVE-2006-7239|
|Copyright||Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com|
|This is only one of 40605 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.