GnuTLS Certificate Validation Security Bypass Weakness

Bugtraq ID: 65792
Class: Design Error
CVE: CVE-2009-5138
Remote: Yes
Local: No
Published: Feb 25 2014 12:00AM
Updated: Mar 19 2015 08:42AM
Credit: Douglas E. Engert
Vulnerable: SuSE SUSE Linux Enterprise Server 10 SP3 LTSS
+ Linux kernel 2.6.5
RedHat Enterprise Linux Desktop Workstation 5 client
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux 5 Server
GNU GnuTLS 2.6.6
GNU GnuTLS 2.6.5
GNU GnuTLS 2.6.4
GNU GnuTLS 2.6.3
GNU GnuTLS 2.6.2
GNU GnuTLS 2.6.1
GNU GnuTLS 2.6
GNU GnuTLS 2.4.1
GNU GnuTLS 2.4
GNU GnuTLS 2.2.5
GNU GnuTLS 2.2.4
GNU GnuTLS 2.2.3
GNU GnuTLS 2.2.2
GNU GnuTLS 2.2.1
GNU GnuTLS 2.2
GNU GnuTLS 2.0
GNU GnuTLS 1.4.3
GNU GnuTLS 1.4.2
GNU GnuTLS 1.4
GNU GnuTLS 1.3.4
GNU GnuTLS 1.3.3
GNU GnuTLS 1.3.2
GNU GnuTLS 1.3.1
GNU GnuTLS 1.3
GNU GnuTLS 1.2.10
GNU GnuTLS 1.2.9
GNU GnuTLS 1.2.8
GNU GnuTLS 1.2.7
GNU GnuTLS 1.2.6
GNU GnuTLS 1.2.5
GNU GnuTLS 1.2.4
GNU GnuTLS 1.2.3
GNU GnuTLS 1.2.2
GNU GnuTLS 1.2.1
CentOS CentOS 5
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus