CVE-2007-3564

Related Files

Debian Linux Security Advisory 1333-1

Posted Jul 19, 2007

Authored by Debian | Site debian.org

Debian Security Advisory 1333-1 - It has been discovered that the GnuTLS certificate verification methods implemented in libcurl-gnutls, a solid, usable, and portable multi-protocol file transfer library, did not check for expired or invalid dates.

tags | advisory, protocol

systems | linux, debian

advisories | CVE-2007-3564

SHA-256 | c66ca293c05c3b36f5c6ee4f60fb3186da8dbb802b573969ef931bd0c00e4a8f

Download | Favorite | View

Ubuntu Security Notice 484-1

Posted Jul 18, 2007

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 484-1 - It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates.

tags | advisory

systems | linux, ubuntu

advisories | CVE-2007-3564

SHA-256 | d8cd72466f0894221e851c1a3f9e92d698d58063134bccdf698338f21da0034c

Download | Favorite | View