FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-27 06:34:59 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
0a7a5dfb-aba4-11ed-be2c-001cc0382b2f	GnuTLS -- timing sidechannel in RSA decryption The GnuTLS project reports: A vulnerability was found that the response times to malformed RSA ciphertexts in ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. Only TLS ciphertext processing is affected. Discovery 2023-02-10 Entry 2023-02-13 gnutls < 3.7.9 CVE-2023-0361 https://gnutls.org/security-new.html#GNUTLS-SA-2020-07-14

VuXML ID

Description

0a7a5dfb-aba4-11ed-be2c-001cc0382b2f

GnuTLS -- timing sidechannel in RSA decryption

The GnuTLS project reports:

A vulnerability was found that the response times to malformed RSA ciphertexts in ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. Only TLS ciphertext processing is affected.

Discovery 2023-02-10
Entry 2023-02-13
gnutls

< 3.7.9

CVE-2023-0361
https://gnutls.org/security-new.html#GNUTLS-SA-2020-07-14