GHSA-fqw6-7w7w-627p

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages.

Ссылки

EPSS

Процентиль: 58%

0.00362

Низкий

7.5 High

CVSS3

CVE ID

CVE-2019-3836

Дефекты

CWE-824

Связанные уязвимости

CVE-2019-3836

CVSS3: 5.9

ubuntu

почти 7 лет назад

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages.

CVE-2019-3836

CVSS3: 5.9

redhat

почти 7 лет назад

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages.

CVE-2019-3836

CVSS3: 5.9

nvd

почти 7 лет назад

It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages.

CVE-2019-3836

CVSS3: 5.9

debian

почти 7 лет назад

It was discovered in gnutls before version 3.6.7 upstream that there i ...

BDU:2020-00252

CVSS3: 5.9

fstec

почти 7 лет назад

Уязвимость криптографической библиотеки GnuTLS, связанная с доступом к неинициализированному указателю, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 58%

0.00362

Низкий

7.5 High

CVSS3

CVE ID

CVE-2019-3836

Дефекты

CWE-824