CVE-2015-8313

Published: 30 November 2015

GnuTLS incorrectly validates the first byte of padding in CBC modes

Priority

Medium

CVSS 3 base score: 5.9

Status

Package Release Status
gnutls26
Launchpad, Ubuntu, Debian
Upstream
Released (2.12.20-8+deb7u4)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (2.12.23-12ubuntu2.3)
gnutls28
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected)