Advisories ยป MGASA-2016-0326

Updated gnutls packages fix security vulnerability

Publication date: 28 Sep 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-7444

Description

An issue was found in certificate validation using OCSP responses caused
by not verifying the serial length, which can falsely report a certificate
as valid (CVE-2016-7444).
                

References

SRPMS

5/core