gnutls26, gnutls28
2017-12-16 00:44
Important CentOS gnutls Update
CVE-2014-0092 gnutls26
CVE-2014-0092 gnutls28
2017-06-16 19:08
2017-06-15 01:55
2017-05-10 23:18
2017-04-14 09:55
2017-04-01 21:21
2017-01-05 19:47


lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
lucid gnutls26 2.8.5-2ubuntu0.5
precise gnutls26 2.12.14-5ubuntu3.7
precise/esm gnutls26 2.12.14-5ubuntu3.7
quantal gnutls26 2.12.14-5ubuntu4.6
saucy gnutls26 2.12.23-1ubuntu4.2
trusty gnutls26 2.12.23-12ubuntu2
upstream gnutls28 3.1.22,3.2.12
utopic gnutls26 2.12.23-12ubuntu2


Release Package Reason
vivid gnutls26 DNE
gnutls28 not-affected
vivid/stable-phone-overlay gnutls26 DNE
gnutls28 not-affected
vivid/ubuntu-core gnutls26 DNE
gnutls28 not-affected
wily gnutls26 DNE
gnutls28 not-affected
xenial gnutls26 DNE
gnutls28 not-affected
yakkety gnutls26 DNE
gnutls28 not-affected
zesty gnutls26 DNE
gnutls28 not-affected
devel gnutls26 DNE
gnutls28 not-affected
lucid gnutls28 DNE
precise gnutls28 ignored
precise/esm gnutls28 DNE
quantal gnutls28 ignored
saucy gnutls28 ignored
trusty gnutls28 not-affected
utopic gnutls28 not-affected

Needs Triage

Release Package Reason
upstream gnutls26 needs-triage