Detections
Analytics

FreeBSD : GnuTLS -- Denial of service vulnerability (b33fb1e0-4c37-11e7-afeb-0011d823eebd)

high Nessus Plugin ID 100706

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The GnuTLS project reports :

It was found using the TLS fuzzer tools that decoding a status response TLS extension with valid contents could lead to a crash due to a NULL pointer dereference. The issue affects GnuTLS server applications.

Solution

Update the affected package.

See Also

https://gnutls.org/security.html#GNUTLS-SA-2017-4

http://www.nessus.org/u?9fdade1f

Plugin Details

Severity: High

ID: 100706

File Name: freebsd_pkg_b33fb1e04c3711e7afeb0011d823eebd.nasl

Version: 3.3

Type: local

Published: 6/9/2017

Updated: 1/4/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:gnutls, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 6/8/2017

Vulnerability Publication Date: 6/7/2017