PublicDateAtUSN: 2011-12-08
Candidate: CVE-2011-4128
PublicDate: 2011-12-08 20:55:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4128
 http://www.gnu.org/s/gnutls/security.html
 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596
 https://ubuntu.com/security/notices/USN-1418-1
Description:
 Buffer overflow in the gnutls_session_get_data function in
 lib/gnutls_session.c in GnuTLS 2.12.x before 2.12.14 and 3.x before 3.0.7,
 when used on a client that performs nonstandard session resumption, allows
 remote TLS servers to cause a denial of service (application crash) via a
 large SessionTicket.
Ubuntu-Description: 
Notes: 
 jdstrand> According to upstream, this is client side only and requires clients
  to be written in a certain undocumented way. Upstream searched for this and
  found no clients to be vulnerable.
Bugs: 
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=648441
Priority: low
Discovered-by: Alban Crequy
Assigned-to: tyhicks
CVSS: 

Patches_gnutls13:
 upstream: http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=190cef6eed37d0e73a73c1e205eb31d45ab60a3c
 upstream: http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=e82ef4545e9e98cbcb032f55d7c750b81e3a0450
upstream_gnutls13: needs-triage
hardy_gnutls13: released (2.0.4-1ubuntu2.7)
lucid_gnutls13: DNE
maverick_gnutls13: DNE
natty_gnutls13: DNE
oneiric_gnutls13: DNE
devel_gnutls13: DNE

Patches_gnutls26:
 upstream: http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=190cef6eed37d0e73a73c1e205eb31d45ab60a3c
 upstream: http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=e82ef4545e9e98cbcb032f55d7c750b81e3a0450
upstream_gnutls26: released (2.12.14)
hardy_gnutls26: DNE
lucid_gnutls26: released (2.8.5-2ubuntu0.1)
maverick_gnutls26: released (2.8.6-1ubuntu0.1)
natty_gnutls26: released (2.8.6-1ubuntu2.1)
oneiric_gnutls26: released (2.10.5-1ubuntu3.1)
devel_gnutls26: not-affected (2.12.14-5ubuntu2)