Ubuntu Security Update USN-6733-1: GnuTLS vulnerabilities

Thread starter LinuxBot
Start date Apr 15, 2024

LinuxBot

Member

Apr 15, 2024

It was discovered that GnuTLS had a timing side-channel when performing certain ECDSA operations. A remote attacker could possibly use this issue to recover sensitive information. (CVE-2024-28834) It was discovered that GnuTLS incorrectly handled verifying certain PEM bundles. A remote attacker could possibly use this issue to cause GnuTLS to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 23.10. (CVE-2024-28835)

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 805 (members: 2, guests: 803)

Latest posts

VPN Help
- Latest: Condobloke
- 37 minutes ago
Linux Security
Qnap Nas share timeouts
- Latest: f33dm3bits
- 58 minutes ago
General Linux Questions
K
FCC Fines Major U.S. Wireless Carriers for Selling Customer Location Data
- Latest: KGIII
- Today at 5:08 AM
Linux Security
Gimp 3 is on the way
- Latest: wizardfromoz
- Today at 4:33 AM
General Computing
Choosing a laptop for linux
- Latest: wizardfromoz
- Today at 4:05 AM
Getting Started

Top