Our security alert includes: Many Linux distributions and other software which use GnuTLS are affected.
GnuTLS has released security updates to address a vulnerability affecting
certificate verification functions. An attacker could use a specially crafted
X509 certificate to bypass validation checks, impersonate legitimate web sites
or services, and perform man-in-the-middle attacks.
Many Linux distributions and other software which use GnuTLS are affected.
Updates
available include:
- GnuTLS 2.12.x patch application
- GnuTLS 3.2.12 for the current stable branch
- GnuTLS 3.1.22 for the previous stable branch
Therefore, as, a unique objective reference for digital transformation,
when it comes to tools and solutions for drawing value-added into the professional
daily activities, Connectikpeople.co encourages users and administrators to
review the GnuTLS Security Advisory GNUTLS-SA-2014-2 and apply the necessary updates to help
mitigate the risk.
At Google, the release includes
Google Chrome 33.0.1750.146 for Windows, Mac, and Linux to address multiple
vulnerabilities, some of which could allow a remote, unauthenticated attacker
to compromise a vulnerable system.
Users and administrators are encouraged to review the Google Chrome Release
blog entry and apply the update.
