Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
Conditional code considered cryptographically counterproductive. Continue reading Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
Collaborate Disseminate
Conditional code considered cryptographically counterproductive. Continue reading Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug
GnuTLS may well be the most widespread cryptographic toolkit you’ve never heard of. Learn more… Continue reading GnuTLS patches memory mismanagement bug – update now!
By Johanna Amann, Software Engineer, Corelight CVE-2020-13777 is a high severity issue in GnuTLS. In a nutshell, GnuTLS versions between 3.6.4 (released 2018-09-24) and 3.6.14 (2020-06-03) have a serious bug in their session resumption code, which lets… Continue reading Detecting GnuTLS CVE-2020-13777 using Zeek