• GnuTLS audit: passive cleartext recovery attack https://anarc.at/blog/2020-06-10-gnutls-audit/ 25 comments 27/7/2020
• GnuTLS: TLS 1.3 session resumption works without master key, allowing MITM https://gitlab.com/gnutls/gnutls/-/issues/1011 50 comments 9/6/2020
• GnuTLS TLS 1.3 session resumption works without master key, allowing MITM https://gitlab.com/gnutls/gnutls/-/issues/1011 5 comments 7/6/2020
• Codenomicon discovered another SSL flaw, this time it's GnuTLS library. http://mobile.eweek.com/security/security-researchers-discover-new-ssl-flaw.html 2 comments 3/6/2014
• Technical Analysis Of The GnuTLS Hello Vulnerability http://radare.today/technical-analysis-of-the-gnutls-hello-vulnerability/ 5 comments 1/6/2014
• CVE-2014-3466: GnuTLS buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1101932 6 comments 1/6/2014
• GnuTLS vulnerability: is unit testing a matter of language culture? http://gehrcke.de/2014/03/gnutls-vulnerability-is-unit-testing-a-matter-of-language-culture/ 6 comments 21/3/2014
• GnuTLS considered harmful (2008) http://www.openldap.org/lists/openldap-devel/200802/msg00072.html 115 comments 5/3/2014
• The Story of the GnuTLS Bug http://blog.existentialize.com/the-story-of-the-gnutls-bug.html 5 comments 5/3/2014
• Certificate Verification Issue - GnuTLS http://gnutls.org/security.html#GNUTLS-SA-2014-2 13 comments 4/3/2014
• GnuTLS, copyright assignment, and GNU project governance http://lwn.net/SubscriberLink/529522/854aed3fb6398b79/ 28 comments 22/12/2012

• GnuTLS patches huge security hole that hung around for two years – worse than Heartbleed, says Google cryptoboffin https://www.theregister.com/2020/06/10/gnutls_patches_security_hole/ 12 comments 19/7/2020 cryptography , practices , programming , security
• Why using OpenSSL and GnuTLS to verify certificates is a bad idea https://twitter.com/sleevi_/status/1282681901069873152 2 comments 14/7/2020 browsers , cryptography , practices , rant , web
• GnuTLS certificate verification vulnerability http://www.gnutls.org/security.html#GNUTLS-SA-2014-2 2 comments 4/3/2014 security

• Deluder: Python utility for intercepting traffic of applications. Deluder can be used as an alternative for EchoMirage. It supports OpenSSL, GnuTLS, SChannel, WinSock and Linux Sockets out of the box. There is also support for remote hosts and optional GUI support through PETEP integration. https://github.com/Warxim/deluder 2 comments 3/2/2024 netsec
• CVE-2020-13777 GnuTLS audit: be scared https://anarc.at/blog/2020-06-10-gnutls-audit/ 65 comments 27/7/2020 netsec
• CVE-2020-13777 GnuTLS audit: be scared https://anarc.at/blog/2020-06-10-gnutls-audit/ 44 comments 26/7/2020 linux
• CVE-2020-13777: TLS 1.3 session resumption works without master key, allowing MITM (#1011) · Issues · gnutls / GnuTLS https://gitlab.com/gnutls/gnutls/-/issues/1011 10 comments 8/6/2020 netsec
• CVE-2020-13777: TLS 1.3 session resumption works without master key, allowing MITM (#1011) · Issues · gnutls / GnuTLS https://gitlab.com/gnutls/gnutls/-/issues/1011 12 comments 8/6/2020 crypto
• Samba and GnuTLS https://blog.cryptomilk.org/2019/10/02/samba-and-gnutls/ 5 comments 4/10/2019 linux
• Samba 4.12 Bringing Much Faster Encryption Performance With GnuTLS https://blog.cryptomilk.org/2019/10/02/samba-and-gnutls/ 15 comments 3/10/2019 linuxadmin
• Emacs for Windows - high-quality native builds of Emacs for Windows supporting x86 (32-bit) and x64 (64-bit) -- includes recent shared DLLs (gnuTLS, ...) https://bitbucket.org/haroogan/emacs-for-windows/ 20 comments 22/10/2014 emacs
• Technical Analysis of the GNUTLS Hello vulnerability CVE 2014-3466 http://radare.today/technical-analysis-of-the-gnutls-hello-vulnerability/ 3 comments 1/6/2014 linux
• CVE-2014-3466 - GnuTLS Buffer Overflow https://bugzilla.redhat.com/show_bug.cgi?id=1101932 7 comments 1/6/2014 linux
• GnuTLS vulnerability: is unit testing a matter of language culture? http://gehrcke.de/2014/03/gnutls-vulnerability-is-unit-testing-a-matter-of-language-culture/ 85 comments 20/3/2014 programming
• Auditing GnuTLS http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7361 20 comments 8/3/2014 netsec
• Red Hat gnutls security patch released https://rhn.redhat.com/errata/RHSA-2014-0246.html 4 comments 7/3/2014 sysadmin
• What is the GnuTLS Bug and How to Protect Your Linux System From It http://www.linux.com/news/featured-blogs/203-konstantin-ryabitsev/765302-what-is-the-gnutls-bug-and-how-to-protect-linux-system-from-it 6 comments 6/3/2014 linux
• The Story of the GnuTLS Bug http://blog.existentialize.com/the-story-of-the-gnutls-bug.html 54 comments 5/3/2014 programming
• List of Debian packages which depend on GNUTLS http://arstechnica.com/security/2014/03/critical-crypto-bug-leaves-linux-hundreds-of-apps-open-to-eavesdropping/ 11 comments 5/3/2014 linux
• The Story of the GnuTLS Bug http://blog.existentialize.com/the-story-of-the-gnutls-bug.html 13 comments 5/3/2014 crypto
• GnuTLS considered harmful (2008) http://www.openldap.org/lists/openldap-devel/200802/msg00072.html 23 comments 4/3/2014 linux
• certificate verification vulnerability in all GnuTLS versions CVE-2014-0092 http://www.gnutls.org/security.html#gnutls-sa-2014-2 66 comments 4/3/2014 netsec
• GnuTLS, copyright assignment, and GNU project governance [LWN.net] http://lwn.net/subscriberlink/529522/854aed3fb6398b79/ 5 comments 30/12/2012 linux
• New GNU project releases for January include autogen, gnutls, parallel, coreutils, cppi, ddrescue, inetutils, libidn, tramp and gdb.. oh, and ed. http://www.fsf.org/blogs/community/gnu-spotlight-with-karl-berry-january-2012 7 comments 1/2/2012 linux