[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-3334-1 gnutls28 -- gnutls28

ID: oval:org.secpod.oval:def:602194Date: (C)2015-08-28   (M)2021-09-13
Class: PATCHFamily: unix




Kurt Roeckx discovered that decoding a specific certificate with very long DistinguishedName entries leads to double free. A remote attacker can take advantage of this flaw by creating a specially crafted certificate that, when processed by an application compiled against GnuTLS, could cause the application to crash resulting in a denial of service.

Platform:
Debian 8.x
Product:
libgnutls-deb0-28
Reference:
DSA-3334-1
CPE    2
cpe:/a:gnu:libgnutls-deb0-28
cpe:/o:debian:debian_linux:8.x

© SecPod Technologies