Ubuntu Update For Gnutls26 USN-2229-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Joonas Kuorilehto discovered that GnuTLS incorrectly handled Server Hello messages. A malicious remote server or a man in the middle could use this issue to cause GnuTLS to crash, resulting in a denial of service, or possibly execute arbitrary code.

Affected

gnutls26 on Ubuntu 14.04 LTS , Ubuntu 13.10 , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2014-3466

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for clamav USN-1482-1
Ubuntu Update for apache2 vulnerabilities USN-575-1
Ubuntu Update for boost vulnerabilities USN-570-1
Ubuntu Update for compiz vulnerability USN-537-2
Ubuntu Update for dovecot USN-1143-1

Ubuntu Update for gnutls26 USN-2229-1

Take action and discover your vulnerabilities