Ubuntu Update For Curl Vulnerability USN-484-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-484-1

Solution

Please Install the Updated Packages.

Insight

It was discovered that the GnuTLS certificate verification methods implemented in Curl did not check for expiration and activation dates. When performing validations, tools using libcurl3-gnutls would incorrectly allow connections to sites using expired certificates.

Affected

curl vulnerability on Ubuntu 6.06 LTS , Ubuntu 6.10 , Ubuntu 7.04

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-July/000557.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-3564
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for emacs21 vulnerability USN-504-1
Ubuntu Update for Firefox 3.0 and Xulrunner vulnerabilities USN-920-1
Ubuntu Update for ca-certificates-java USN-1197-8
Ubuntu Update for exim4 USN-1135-1
Ubuntu Update for curl USN-1721-1

Ubuntu Update for curl vulnerability USN-484-1

Take action and discover your vulnerabilities