diff options
| author | William Grzybowski <wg@FreeBSD.org> | 2013-10-25 15:55:40 +0000 |
|---|---|---|
| committer | William Grzybowski <wg@FreeBSD.org> | 2013-10-25 15:55:40 +0000 |
| commit | 49b1ea417666e59276863228ba13e163b1ec7d7c (patch) | |
| tree | 62ab6521e56eea77dbf4ade459464f1eadf6436a /security/vuxml/vuln.xml | |
| parent | bbc864f00aa943016a373b7d3700e9095b1a10ca (diff) | |
Notes
Diffstat (limited to 'security/vuxml/vuln.xml')
| -rw-r--r-- | security/vuxml/vuln.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 881182327d99..7fc13473ebd1 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -51,6 +51,34 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="9065b930-3d8b-11e3-bd1a-e840f2096bd0"> + <topic>gnutls -- denial of service</topic> + <affects> + <package> + <name>gnutls3</name> + <range><lt>3.1.15</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Salvatore Bonaccorso reports:</p> + <blockquote cite="http://www.gnutls.org/security.html#GNUTLS-SA-2013-3"> + <p>This vulnerability affects the DANE library of gnutls 3.1.x and + gnutls 3.2.x. A server that returns more 4 DANE entries could + corrupt the memory of a requesting client.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2013-4466</cvename> + <url>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4466</url> + </references> + <dates> + <discovery>2013-10-25</discovery> + <entry>2013-10-25</entry> + </dates> + </vuln> + <vuln vid="9a57c607-3cab-11e3-b4d9-bcaec565249c"> <topic>xorg-server -- use after free</topic> <affects> |