FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gnutls -- OCSP validation issue

Affected packages
gnutls < 3.4.15

Details

VuXML ID a0128291-7690-11e6-95a8-0011d823eebd
Discovery 2016-09-08
Entry 2016-09-09

gnutls.org reports:

Stefan Bühler discovered an issue that affects validation of certificates using OCSP responses, which can falsely report a certificate as valid under certain circumstances.

[source]

References

URL https://gnutls.org/security.html#GNUTLS-SA-2016-3

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.