Double free vulnerability in GnuTLS before 3.3.17 and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service via a long DistinguishedName (DN) entry in a certificate.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "3.3.15-5ubuntu2", "binary_name": "gnutls-bin" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "gnutls-bin-dbgsym" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "gnutls-doc" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "guile-gnutls" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "guile-gnutls-dbgsym" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls-deb0-28" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls-deb0-28-dbgsym" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls-dev" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls-openssl27" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls-openssl27-dbgsym" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls28-dbg" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutls28-dev" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutlsxx28" }, { "binary_version": "3.3.15-5ubuntu2", "binary_name": "libgnutlsxx28-dbgsym" } ] }