Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Q-325: gnutls11 Cryptographic Weakness

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Q-325: gnutls11 Cryptographic Weakness
# 1  
Old 12-24-2007
Q-325: gnutls11 Cryptographic Weakness
A flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid. The risk is LOW. Could allow an attacker to generate a forged signature that will be accepted as valid.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Solaris

Assigning cryptographic resources to the control domain

Sun documentation suggests that we need to assign cryptographic resources to the control domain as part of the initial configuration. I searched the documentation to better understand the purpose of this and know recommendation/limitation. I am doing this for Netra T5220 and wondering if the... (5 Replies)
Discussion started by: StarSol
5 Replies

2. UNIX for Advanced & Expert Users

Weakness in Perl CGI causes memory dump ??

I have discovered a curious phenomenon in GCI. I need some advice from someone far more adept. Is this a bug or potential security weakness? Context: Redhat 8.0 on xx86 (pentium 3) Apache 2.0, Perl 5.80 Background: I've been trying to harden a web application which accepts user uploaded... (0 Replies)
Discussion started by: andyj
0 Replies
Login or Register to Ask a Question

LEARN ABOUT SUSE

gnutls_ia_allocate_server_credentials

gnutls_ia_allocate_server_credentials(3)			      gnutls				  gnutls_ia_allocate_server_credentials(3)

NAME

       gnutls_ia_allocate_server_credentials - Used to allocate an gnutls_ia_server_credentials_t structure

SYNOPSIS

       #include <gnutls/extra.h>

       int gnutls_ia_allocate_server_credentials(gnutls_ia_server_credentials_t * sc);

ARGUMENTS

       gnutls_ia_server_credentials_t * sc
		   is a pointer to a gnutls_ia_server_credentials_t structure.

DESCRIPTION

       This structure is complex enough to manipulate directly thus this helper function is provided in order to allocate it.

       Adding  this  credential to a session will enable TLS/IA, and will require an Application Phase after the TLS handshake (if the client sup-
       port TLS/IA).  Use gnutls_ia_require_inner_phase() to toggle the TLS/IA mode.

RETURNS

       On success, GNUTLS_E_SUCCESS (0) is returned, otherwise an error code is returned.

REPORTING BUGS

       Report  bugs  to  <bug-gnutls@gnu.org>.	 GnuTLS  home  page:  http://www.gnu.org/software/gnutls/  General  help   using   GNU	 software:
       http://www.gnu.org/gethelp/

COPYRIGHT

       Copyright (C) 2008 Free Software Foundation.
       Copying	and  distribution  of  this file, with or without modification, are permitted in any medium without royalty provided the copyright
       notice and this notice are preserved.

SEE ALSO

       The full documentation for gnutls is maintained as a Texinfo manual.  If the info and gnutls programs are properly installed at your  site,
       the command

	      info gnutls

       should give you access to the complete manual.

gnutls								       2.8.6				  gnutls_ia_allocate_server_credentials(3)