At least it's a client only vulnerability. Hope your servers don't make outbound... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

0x0 on June 1, 2014 | parent | context | favorite | on: CVE-2014-3466: GnuTLS buffer overflow

At least it's a client only vulnerability. Hope your servers don't make outbound connections! :)

SoftwareMaven on June 1, 2014 [–]

Because clients don't get re-routed through malicious redirects to unexpected servers. The consolation is that GnuTLS isn't used for popular web browsers.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact