CVE-2015-3308

EPSS 1.4%

Published: 9/2/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-3308

Description

Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted CRL distribution point.

Affected packages (1)

Debian/gnutls28from 0, < 3.3.8-7

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-3308