|Max CVSS||5.8||Min CVSS||4.0||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.
|28-11-2016 - 19:10||07-03-2014 - 00:10|
The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, and 3.1.x before 3.1.7 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows rem
|26-03-2014 - 04:46||08-02-2013 - 19:55|