Описание
A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | pending | 3.8.10-3ubuntu2 |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | needs-triage | |
| esm-infra/xenial | needs-triage | |
| fips-preview/jammy | needs-triage | |
| fips-updates/jammy | released | 3.7.3-4ubuntu1.8+Fips1.1 |
| fips-updates/noble | released | 3.8.3-1.1ubuntu3.5+Fips1.1 |
| jammy | released | 3.7.3-4ubuntu1.8 |
| noble | released | 3.8.3-1.1ubuntu3.5 |
| plucky | ignored | end of life, was needs-triage |
Показывать по
4 Medium
CVSS3
Связанные уязвимости
A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.
A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.
A flaw was found in the GnuTLS library, specifically in the gnutls_pkc ...
4 Medium
CVSS3