Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2014:0758-1)
Summary:The remote host is missing an update for the 'gnutls' package(s) announced via the SUSE-SU-2014:0758-1 advisory.
The remote host is missing an update for the 'gnutls' package(s) announced via the SUSE-SU-2014:0758-1 advisory.

Vulnerability Insight:
GnuTLS has been patched to ensure proper parsing of session ids during the TLS/SSL handshake. Additionally, three issues inherited from libtasn1 have been fixed.

Further information is available at [link moved to references] These security issues have been fixed:
* Possible memory corruption during connect (CVE-2014-3466)
* Multiple boundary check issues could allow DoS (CVE-2014-3467)
* asn1_get_bit_der() can return negative bit length (CVE-2014-3468)
* Possible DoS by NULL pointer dereference (CVE-2014-3469)
Security Issue references:
* CVE-2014-3466

Affected Software/OS:
'gnutls' package(s) on SUSE Linux Enterprise Desktop 11 SP3, SUSE Linux Enterprise High Availability Extension 11 SP3, SUSE Linux Enterprise Server 11 SP3, SUSE Linux Enterprise Software Development Kit 11 SP3.

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2014-3466
BugTraq ID: 67741
Debian Security Information: DSA-2944 (Google Search)
RedHat Security Advisories: RHSA-2014:0594
RedHat Security Advisories: RHSA-2014:0595
RedHat Security Advisories: RHSA-2014:0684
RedHat Security Advisories: RHSA-2014:0815
SuSE Security Announcement: SUSE-SU-2014:0758 (Google Search)
SuSE Security Announcement: SUSE-SU-2014:0788 (Google Search)
SuSE Security Announcement: openSUSE-SU-2014:0763 (Google Search)
SuSE Security Announcement: openSUSE-SU-2014:0767 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-3467
Debian Security Information: DSA-3056 (Google Search)
RedHat Security Advisories: RHSA-2014:0596
RedHat Security Advisories: RHSA-2014:0687
Common Vulnerability Exposure (CVE) ID: CVE-2014-3468
Common Vulnerability Exposure (CVE) ID: CVE-2014-3469
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.