CVE-2014-3466 (retired)

Priority
Description
Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c
in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows
remote servers to cause a denial of service (memory corruption) or possibly
execute arbitrary code via a long session id in a ServerHello message.
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):released (2.12.23-12ubuntu2.1)
Patches:
Upstream:https://www.gitorious.org/gnutls/gnutls/commit/89238044ade02c4d80e334ab74056ef28599663d
More Information

Updated: 2019-03-26 12:13:03 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)