Описание
A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.
Ссылки
- Third Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListRelease NotesVendor Advisory
- Third Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListRelease NotesVendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.7.7 (исключая)
cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
Конфигурация 4
Одно из
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.0056
Низкий
7.5 High
CVSS3
Дефекты
CWE-415
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 3 года назад
A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.
CVSS3: 7.5
redhat
почти 3 года назад
A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.
CVSS3: 7.5
debian
почти 3 года назад
A vulnerability found in gnutls. This security flaw happens because of ...
EPSS
Процентиль: 67%
0.0056
Низкий
7.5 High
CVSS3
Дефекты
CWE-415