Package "libgnutls28"

Name: libgnutls28


GNU TLS library - main runtime library

Latest version: 3.0.11-1ubuntu2.1
Release: precise (12.04)
Level: updates
Repository: universe
Head package: gnutls28
Homepage: http://www.gnutls.org/


Download "libgnutls28"

Other versions of "libgnutls28" in Precise

Repository Area Version
base universe 3.0.11-1ubuntu2
security universe 3.0.11-1ubuntu2.1


Version: 3.0.11-1ubuntu2.1 2015-06-11 20:06:48 UTC

  gnutls28 (3.0.11-1ubuntu2.1) precise-security; urgency=medium

  * SECURITY UPDATE: Denial of service and possible remote arbitrary code
    execution via crafted ServerHello message
    - debian/patches/21_CVE-2014-3466.patch: Add upper bounds check for
      session id size. Based on upstream patch. (LP: #1326779)

 -- Tyler Hicks <email address hidden> Thu, 11 Jun 2015 10:51:35 -0500

1326779 libgnutls28 appears to not have been updated for CVE-2014-3466 in Trusty
CVE-2014-3466 Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allo

About   -   Send Feedback to @ubuntu_updates