CVE-2013-4466

Priority
Description
Buffer overflow in the dane_query_tlsa function in the DANE library
(libdane) in GnuTLS 3.1.x before 3.1.15 and 3.2.x before 3.2.5 allows
remote servers to cause a denial of service (memory corruption) via a
response with more than four DANE entries.
Notes
mdeslauronly affects 3.1.x and 3.2.x
Package
Upstream:needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Package
Upstream:released (3.1.15,3.2.5)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected [3.2.11-2ubuntu1])
More Information

Updated: 2020-09-10 02:46:58 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)