Описание
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 3.8.3-1ubuntu1 |
| esm-infra/bionic | not-affected | |
| esm-infra/focal | not-affected | 3.6.13-2ubuntu1.9 |
| esm-infra/xenial | not-affected | |
| focal | not-affected | 3.6.13-2ubuntu1.9 |
| jammy | released | 3.7.3-4ubuntu1.4 |
| lunar | released | 3.7.8-5ubuntu1.2 |
| mantic | released | 3.8.1-4ubuntu1.2 |
| noble | released | 3.8.3-1ubuntu1 |
Показывать по
EPSS
7.5 High
CVSS3
Связанные уязвимости
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTL ...
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.
EPSS
7.5 High
CVSS3