Follow

GnuTLS 3.6.4 to 3.6.13 allows man-in-the-middle attacks:

gitlab.com/gnutls/gnutls/-/iss

– The server implementation handles TLS session tickets incorrectly.
– Fixed in GnuTLS 3.6.14 (released on June 3, 2020).
– CVE-2020-13777

Sign in to participate in the conversation
chaos.social

chaos.social – a Fediverse instance for & by the Chaos community