‫ SUSE update for gnutls

IRCAD2012051931
ID: IRCAD2012051931
Release Date: 2012-05-16
Criticality level: Highly critical
 
Software:
openSUSE 12.1
 
Description:
SUSE has issued an update for gnutls. This fixes some vulnerabilities, which can be exploited by malicious people to potentially cause a DoS (Denial of Service) in an application using the library and potentially compromise an application using the library.
1) The vulnerability is caused due to a double-free error within the libgnutls library and can be exploited to cause a crash via a specially crafted certificate list.
 
Solution
Apply update packages via the zypper package manager.
 
- openSUSE 12.1:
 
zypper in -t patch openSUSE-2012-277
 
 
References:
openSUSE-SU-2012:0620-1:
GnuTLS:
 
Secunia:
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 27 اردیبهشت 1391

امتیاز

امتیاز شما
تعداد امتیازها:0