Search for packages
| purl | pkg:deb/debian/gnutls26@2.8.6-1%2Bsqueeze6 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-13xf-5uk1-aaaa
Aliases: CVE-2014-1959 |
lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates. |
Affected by 2 other vulnerabilities. |
|
VCID-2zab-6bzp-aaae
Aliases: CVE-2015-7575 |
Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before 43.0.2 and Firefox ESR 38.x before 38.5.2, does not reject MD5 signatures in Server Key Exchange messages in TLS 1.2 Handshake Protocol traffic, which makes it easier for man-in-the-middle attackers to spoof servers by triggering a collision. |
Affected by 2 other vulnerabilities. |
|
VCID-3cjv-9a1e-aaae
Aliases: CVE-2014-3466 |
Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows remote servers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a long session id in a ServerHello message. |
Affected by 2 other vulnerabilities. |
|
VCID-dv9u-5h4j-aaae
Aliases: CVE-2015-8313 |
GnuTLS incorrectly validates the first byte of padding in CBC modes |
Affected by 2 other vulnerabilities. |
|
VCID-sj73-kvv9-aaad
Aliases: CVE-2013-2116 |
CVE-2013-2116 gnutls: out of bounds read in _gnutls_ciphertext2compressed (GNUTLS-SA-2013-2) |
Affected by 2 other vulnerabilities. |
|
VCID-stcz-2fq5-aaap
Aliases: CVE-2014-0092 |
lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate. |
Affected by 2 other vulnerabilities. |
|
VCID-uxsr-unmu-aaak
Aliases: CVE-2015-0282 |
GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspecified vectors. |
Affected by 2 other vulnerabilities. |
|
VCID-wm9w-3u2d-aaap
Aliases: CVE-2015-0294 |
GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate. |
Affected by 2 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T09:19:21.298967+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:15:21.805081+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:14:43.957200+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:11:27.846231+00:00 | Debian Oval Importer | Affected by | VCID-wm9w-3u2d-aaap | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:11:06.200986+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:04:43.360209+00:00 | Debian Oval Importer | Affected by | VCID-3cjv-9a1e-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:03:39.835225+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:00:21.730046+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-20T19:30:52.622651+00:00 | Debian Oval Importer | Affected by | VCID-3cjv-9a1e-aaae | None | 36.1.3 |
| 2025-06-20T19:27:56.624715+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | None | 36.1.3 |
| 2025-06-20T19:26:07.723295+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | None | 36.1.3 |
| 2025-06-20T19:25:39.296918+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | None | 36.1.3 |
| 2025-06-20T19:23:08.183262+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | None | 36.1.3 |
| 2025-06-20T19:21:48.528849+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | None | 36.1.3 |
| 2025-06-20T19:20:39.653630+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | None | 36.1.3 |
| 2025-06-08T03:07:11.729806+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T03:03:04.611353+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T03:02:24.418241+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T02:58:56.928800+00:00 | Debian Oval Importer | Affected by | VCID-wm9w-3u2d-aaap | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T02:58:32.723206+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T02:51:46.733471+00:00 | Debian Oval Importer | Affected by | VCID-3cjv-9a1e-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T02:50:40.106616+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T02:47:11.960633+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-07T13:27:38.621648+00:00 | Debian Oval Importer | Affected by | VCID-3cjv-9a1e-aaae | None | 36.1.0 |
| 2025-06-07T13:25:29.075625+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | None | 36.1.0 |
| 2025-06-07T13:24:12.711262+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | None | 36.1.0 |
| 2025-06-07T13:23:49.658244+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | None | 36.1.0 |
| 2025-06-07T13:21:59.039616+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | None | 36.1.0 |
| 2025-06-07T13:21:22.921674+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | None | 36.1.0 |
| 2025-06-07T13:20:12.146436+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | None | 36.1.0 |
| 2025-06-03T13:24:47.806093+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | None | 36.1.2 |
| 2025-06-03T13:23:30.658949+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | None | 36.1.2 |
| 2025-06-03T13:23:08.434876+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | None | 36.1.2 |
| 2025-06-03T13:21:22.637951+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | None | 36.1.2 |
| 2025-06-03T13:20:46.483196+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | None | 36.1.2 |
| 2025-06-03T13:19:39.994817+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | None | 36.1.2 |
| 2025-04-08T01:34:25.596183+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:30:12.294872+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:29:33.061450+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:26:04.436786+00:00 | Debian Oval Importer | Affected by | VCID-wm9w-3u2d-aaap | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:25:42.211194+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:19:01.654853+00:00 | Debian Oval Importer | Affected by | VCID-3cjv-9a1e-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:17:53.198562+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:14:21.662643+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-07T12:03:10.131229+00:00 | Debian Oval Importer | Affected by | VCID-3cjv-9a1e-aaae | None | 36.0.0 |
| 2025-04-07T12:01:00.295063+00:00 | Debian Oval Importer | Affected by | VCID-stcz-2fq5-aaap | None | 36.0.0 |
| 2025-04-07T11:59:42.481800+00:00 | Debian Oval Importer | Affected by | VCID-13xf-5uk1-aaaa | None | 36.0.0 |
| 2025-04-07T11:59:19.465093+00:00 | Debian Oval Importer | Affected by | VCID-uxsr-unmu-aaak | None | 36.0.0 |
| 2025-04-07T11:57:29.779091+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | None | 36.0.0 |
| 2025-04-07T11:56:53.882818+00:00 | Debian Oval Importer | Affected by | VCID-2zab-6bzp-aaae | None | 36.0.0 |
| 2025-04-07T11:55:44.893843+00:00 | Debian Oval Importer | Affected by | VCID-dv9u-5h4j-aaae | None | 36.0.0 |
| 2024-12-28T17:24:28.525182+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 35.0.0 |
| 2024-10-15T06:57:52.518305+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 34.0.2 |
| 2024-10-05T04:57:51.000181+00:00 | Debian Oval Importer | Affected by | VCID-sj73-kvv9-aaad | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 34.0.1 |