Back to bug 1374266
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-09-08 11:26:30 UTC | Whiteboard | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=new,fedora-all/gnutls=affected | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=new,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected |
| Adam Mariš | 2016-09-08 11:26:36 UTC | CC | erik-fedora, mike, rjones | |
| Adam Mariš | 2016-09-08 11:27:00 UTC | Whiteboard | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=new,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=new,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected |
| Adam Mariš | 2016-09-08 11:27:40 UTC | Depends On | 1374267 | |
| Adam Mariš | 2016-09-08 11:27:48 UTC | Depends On | 1374269 | |
| Adam Mariš | 2016-09-08 11:27:58 UTC | Depends On | 1374270 | |
| Adam Mariš | 2016-09-08 11:29:57 UTC | Blocks | 1374271 | |
| Norman Sardella | 2016-09-08 21:18:13 UTC | CC | sardella | |
| Slawomir Czarko | 2016-09-09 05:53:40 UTC | CC | slawomir | |
| Andrej Nemec | 2016-09-19 09:32:23 UTC | Alias | CVE-2016-7444 | |
| Andrej Nemec | 2016-09-19 09:32:30 UTC | Summary | gnutls: Incorrect certificate validation when using OCSP responses (GNUTLS-SA-2016-3) | CVE-2016-7444 gnutls: Incorrect certificate validation when using OCSP responses (GNUTLS-SA-2016-3) |
| Andrej Nemec | 2016-09-19 09:33:32 UTC | CC | anemec | |
| Dhiru Kholia | 2016-09-20 06:24:24 UTC | Whiteboard | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=new,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=affected,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected |
| Dhiru Kholia | 2016-09-20 06:32:23 UTC | Depends On | 1377569 | |
| Dhiru Kholia | 2016-09-21 05:29:33 UTC | Whiteboard | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=affected,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=defer,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected |
| Dhiru Kholia | 2016-09-21 05:30:24 UTC | CC | dkholia | |
| Dhiru Kholia | 2016-10-12 10:57:42 UTC | Whiteboard | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=defer,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected |
| Huzaifa S. Sidhpurwala | 2017-04-25 06:03:43 UTC | Blocks | 1415638 | |
| Huzaifa S. Sidhpurwala | 2017-07-19 05:36:56 UTC | Doc Text | A flaw was found in the way GnuTLS validated certificates using OCSP responses. This could falsely report a certificate as valid under certain circumstances. | |
| PnT Account Manager | 2018-03-29 22:01:21 UTC | CC | dkholia | |
| Nikos Mavrogiannopoulos | 2018-09-13 06:45:03 UTC | Status | NEW | CLOSED |
| Resolution | --- | CURRENTRELEASE | ||
| Last Closed | 2018-09-13 02:45:03 UTC | |||
| Tomas Hoger | 2018-09-13 07:27:06 UTC | Resolution | CURRENTRELEASE | ERRATA |
| Product Security DevOps Team | 2019-09-29 13:56:12 UTC | Whiteboard | impact=low,public=20160902,reported=20160908,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N,cwe=CWE-295,rhel-5/gnutls=notaffected,rhel-6/gnutls=notaffected,rhel-7/gnutls=wontfix,fedora-all/gnutls=affected,fedora-all/mingw-gnutls=affected,epel-7/mingw-gnutls=affected |
Back to bug 1374266