pkg:Debian/gnutls28
共 82 筆 CVECRITICAL7HIGH34MEDIUM23LOW3
✅ 檢查你的版本
所有已知漏洞
- from 0, < 3.7.1-5+deb11u10
- from 0, < 3.7.1-1
- from 0, < 3.7.1-1
- CRITICAL9.8CVE-2017-5337Multiple heap-based buffer overflows in the read_attribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers t…from 0, < 3.5.8-1
- CRITICAL9.8CVE-2017-5336Stack-based buffer overflow in the cdk_pk_get_keyid function in lib/opencdk/pubkey.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows…from 0, < 3.5.8-1
- CRITICAL9.8CVE-2017-5334Double free vulnerability in the gnutls_x509_ext_import_proxy function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attacke…from 0, < 3.5.8-1
- CRITICAL9.1CVE-2026-33845A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow du…from 0, < 3.7.1-5+deb11u10
- from 0, < 3.7.1-5+deb11u10
- from 0, < 3.7.1-5+deb11u10
- HIGH8.2CVE-2025-32990A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility.from 0, < 3.7.1-5+deb11u8
- from 0, < 3.7.1-5+deb11u8
- from 0, < 3.7.1-5+deb11u8
- from 0, < 3.7.9-2+deb12u5
- from 0, < 3.7.1-5+deb11u10
- HIGH7.5CVE-2026-33846A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS.from 0, < 3.7.1-5+deb11u10
- from 0, < 3.8.12-1
- HIGH7.5CVE-2024-0567A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust.from 0, < 3.7.1-5+deb11u5
- from 0, < 3.6.7-4+deb10u12
- from 0, < 3.7.1-5+deb11u5
- from 0, < 3.7.1-5+deb11u2
- from 0, < 3.7.1-5+deb11u2
- from 0, < 3.6.15-1
- HIGH7.5CVE-2015-0294GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate.from 0, < 3.3.8-6
- HIGH7.5CVE-2019-3836It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later w…from 0, < 3.6.7-2
- from 0, < 3.6.7-2
- HIGH7.5CVE-2016-4456The "GNUTLS_KEYLOGFILE" environment variable in gnutls 3.4.12 allows remote attackers to overwrite and corrupt arbitrary files in the files…from 0, < 3.4.13-1
- from 0, < 3.5.8-5+deb9u1
- from 0, < 3.5.8-6
- HIGH7.5CVE-2017-7869GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_rea…from 0, < 3.5.8-4
- HIGH7.5CVE-2017-5335The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a…from 0, < 3.5.8-1
- HIGH7.5CVE-2016-7444The gnutls_ocsp_resp_check_crt function in lib/x509/ocsp.c in GnuTLS before 3.4.15 and 3.5.x before 3.5.4 does not verify the serial length…from 0, < 3.5.3-4
- from 0, < 3.7.1-5+deb11u10
- from 0, < 3.7.1-5+deb11u10
- from 0, < 3.6.7-4+deb10u10
- from 0, < 3.7.1-5+deb11u3
- from 0, < 3.7.1-5+deb11u3
- from 0, < 3.6.14-1
- from 0, < 3.6.7-4+deb10u4
- from 0, < 3.6.7-4+deb10u3
- from 0, < 3.6.13-2
- from 0, < 3.7.1-5+deb11u10
- MEDIUM6.5CVE-2025-6395A NULL pointer dereference flaw was found in the GnuTLS software in _gnutls_figure_common_ciphersuite().from 0, < 3.7.1-5+deb11u8
- from 0, < 3.7.1-5+deb11u1
- from 0, < 3.6.7-4+deb10u9
- from 0, < 3.6.7-4+deb10u11
- from 0, < 3.7.1-5+deb11u4
- MEDIUM5.9CVE-2018-10845It was found that the GnuTLS implementation of HMAC-SHA-384 was vulnerable to a Lucky thirteen style attack.from 0, < 3.5.19-1
- from 0, < 3.3.30-0+deb8u1
- from 0, < 3.5.19-1
- from 0, < 3.3.15-1
- MEDIUM5.6CVE-2018-16868A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS#1 v1.…from 0, < 3.6.5-2
- MEDIUM5.6CVE-2018-10846A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found.from 0, < 3.5.19-1
- from 0, < 3.7.1-5+deb11u10
- from 0, < 3.7.1-5+deb11u9
- from 0, < 3.7.1-5+deb11u9
- from 0, < 3.7.9-2+deb12u6
- MEDIUM5.3CVE-2025-32989A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (…from 0, < 3.7.9-2+deb12u5
- from 0, < 3.7.9-2+deb12u4
- from 0, < 3.7.1-5+deb11u7
- from 0, < 3.7.1-5+deb11u7
- from 0, < 3.7.1-5+deb11u6
- from 0, < 3.7.1-5+deb11u6
- MEDIUM5.0CVE-2024-28835A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a specially crafted .pem bundle us…from 0, < 3.7.1-5+deb11u6
- MEDIUM4.0CVE-2025-9820A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization.from 0, < 3.7.1-5+deb11u9
- from 0, < 3.8.9-3+deb13u4
- from 0, < 3.7.9-2+deb12u7
- from 0, < 3.3.8-5
- from 0, < 3.7.1-5+deb11u10
- —CVE-2015-3308Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly h…from 0, < 3.3.8-7
- from 0, < 3.3.17-1
- from 0, < 3.3.8-6+deb8u2
- —CVE-2014-8564The _gnutls_ecc_ansi_x963_export function in gnutls_ecc.c in GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 allows…from 0, < 3.3.8-4
- —CVE-2014-3465The gnutls_x509_dn_oid_name function in lib/x509/common.c in GnuTLS 3.0 before 3.1.20 and 3.2.x before 3.2.10 allows remote attackers to ca…from 0, < 3.2.10-1
- from 0, < 3.2.15-1
- from 0, < 3.2.11-1
- from 0, < 3.2.11-2
- —CVE-2013-1619The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, and 3.1.x before 3.1.7 does not properly consider timing side-channel…from 0, < 3.0.22-3
- from 0, < 3.0.22-3
- from 0, < 3.0.17-2
- —CVE-2012-1663Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows remote attackers to cause a denial of service (application crash) or…from 0, < 3.0.14-1
- —CVE-2012-0390The DTLS implementation in GnuTLS 3.0.10 and earlier executes certain error-handling code only if there is a specific relationship between…from 0, < 3.0.11-1
- from 0