Get a Pentest and security assessment of your IT network.

News

First goto fail, now something Gnu

A vulnerability has been discovered that affects the certificate verification functions of all gnutls versions. The vulnerability was discovered during an audit of GnuTLS for Red Hat. A specially crafted certificate could bypass certificate validation checks. The code makes liberal use of strlen and strcat, when it needs to be using counted-length data blobs everywhere. The code is completely unsafe for handling binary data, and yet the nature of TLS processing is almost entirely dependent on secure handling of binary data.”]

Source: https://www.csoonline.com/article/2136244/first-goto-fail–now-something-gnu.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2