Bug Found In GnuTLS Crypto Library Leaves Linux Users Open To Attacks

📅 June 4, 2014 - Over the weekend developers released an update that patched security flaws found in the GnuTLS code of Linux PCs running applications such as RedHat, Debian, and Ubuntu.

According to ArsTechnica, the bug is capable of sending malicious data to devices with encrypted HTTPS connections, allowing the attackers to remotely control devices by the corrupted coding.

“A flaw was found in the way GnuTLS parsed session IDs from ServerHello messages of the TLS/SSL handshake,” wrote RedHat. ”A malicious server could use this flaw to send an excessively long session ID value, which would trigger a buffer overflow in a connecting TLS/SSL client application using GnuTLS, causing the client application to crash or possibly execute arbitrary code.”

An update for the bug was released on Friday for GnuTLS versions 3.1.23, 3.2.15, and 3.3.4, though the bug was discovered at least two weeks ago.

RedHat's Fedora project and Extra Packages for Enterprise Linux version 5 was affected by this vulnerability, ZDNet reports.

The security flaw found in the GnuTLS crytographic library was found by Joonas Kuorilehto of Codenomicon, the same company that discovered the OpenSSL Heartbleed bug.

Reads: 1913 | Category: General | Source: TheHN : The Hosting News

Want to add a website news or press release ? Just do it, it's free! Use add web hosting news!

Other news

📅 Jun 4, 2014 - CloudFX Launches CloudConsult Automated Cloud Consulting Services - CloudFX, an Asia-based Cloud IT Transformation leader serving global markets, today announced the launch of their innovative SaaS-based CloudConsult product suite of automated decision support frameworks for IT Transformation. CloudConsult consists of 14 easy-to-use self-service cloud-consulting tools built to help enterprises, service providers and vendors make IT decisions that lead to positive change and measurable financial benefits.

CloudFX was founded in Singapore in 2009 by Damian Crotty, a seasoned IT industry executive. “Cloud computing is disrupting business as usual,” says Crotty, “and CloudConsult will help deliver upon the promise of cloud technology by simplifying and accelera

📅 Jun 4, 2014 - Druva Joins Forces with Recommind to Expedite Endpoint eDiscovery - Druva announced today that it has partnered with eDiscovery pioneer Recommind to create the industry's most comprehensive solution for document collection, analysis and review. The partnership combines the eDiscovery enablement capabilities of Druva's inSync endpoint data protection and governance platform, including legal hold management, with the power and simplicity of Recommind's Axcelerate platform for hosted review and analysis.

The joint solution marks the first collaboration between endpoint backup and eDiscovery providers. It utilizes unique technology from each company to collect and analyze data from thousands of enterprise endpoints, from phones to tablets to laptops, under the

📅 Jun 4, 2014 - ZZ Servers Builds PCI-Compliant Hosting Platform Through New Partnership With InterWorx - ZZ Servers, a leading provider of shared and dedicated PCI-compliant hosting, has announced a new HIPAA hosting platform powered by InterWorx, the advanced web hosting control panel, to provide secure and standards-compliant hosting to a wide range of SMB and enterprise clients.

The InterWorx Control Panel allows ZZ Servers to deploy and manage a PCI Level 1 validated shared hosting platform that also conforms to numerous other regulatory and industry standards. PCI DSS is the mandatory industry standard for companies handling, storing, and transporting credit card data. ZZ Servers chose to use InterWorx rather than competing products such as cPanel because of its ease of use and standards-

📅 Jun 5, 2014 - Media Temple Expands Control Panel Options for Its Linux Virtual Private Server with the Addition of cPanel®/WHM - Media Temple, a Los Angeles-based company providing premium web hosting and cloud services to web developers, designers, digital entrepreneurs and innovators, today announced it has addedcPanel/WHM to its high-performance dedicated virtual server (DV). DV customers can now choose between cPanel/WHM or Plesk to administer their environment, while the company's award-winning customer support team will provide them with all the help they need 24/7.

With cPanel/WHM, Media Temple brings a new, fast and reliable control panel to its DV customers along with hundreds of features. cPanel/WHM is also VPS reseller-friendly and allows managing multiple virtual servers from a single control panel.

“Tak

📅 Jun 5, 2014 - Nintex Named a Finalist in the 2014 Microsoft Partner of the Year Awards - Nintex, the world leader in workflow software, today announced it has been named a finalist for the 2014 Microsoft Partner of the Year Awards in the Office and SharePoint App Development category. The annual awards honor Microsoft partners who are solving the challenges of mutual customers with outstanding software solutions, excellent leadership and business practices. This is the fourth consecutive year that Nintex has been recognized for its innovative technologies and commitment to customer success.

Drawing more than 2,800 submissions from more than 117 countries, this year's Microsoft Partner of the Year Awards honored exemplary partners across multiple core competencies. The Office an

📅 Jun 5, 2014 - TELEHOUSE and Digital Edge Welcome 60 Students to Tour Staten Island Data Center - Ralph McKee Career and Technical High School is sending 60 high school engineering students to TELEHOUSE 's Staten Island Data Center for a tour of the facility and a presentation on the employment opportunities that exist in the telecom and IT industries. Hosted by TELEHOUSE, the global leader in data centers, international internet exchanges, and scalable IT support solutions, and Digital Edge, a data center services provider specializing in back-end technology, this outreach event is an innovative way to bridge the gap between academia and the professional workplace setting. The tours will take place today between 9 AM and 11 AM at Telehouse's Staten Island data center, located at 7 Telep