CVE-2015-3308

Priority
Description
Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14
allows remote attackers to cause a denial of service or possibly have
unspecified other impact via a crafted CRL distribution point.
Assigned-to
mdeslaur
Notes
sbeattieintroduced in 3.3.0
Package
Upstream:not-affected
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Package
Upstream:released (3.3.8-7,3.3.14)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Patches:
Upstream:https://gitlab.com/gnutls/gnutls/commit/d6972be33264ecc49a86cd0958209cd7363af1e9
Upstream:https://gitlab.com/gnutls/gnutls/commit/053ae65403216acdb0a4e78b25ad66ee9f444f02
More Information

Updated: 2020-09-10 04:42:50 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)