CVE-2015-6251

EPSS 6.7%

gnutls28 - security update

Published: 8/24/2015Modified: 4/28/2026

Description

Double free vulnerability in GnuTLS before 3.3.17 and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service via a long DistinguishedName (DN) entry in a certificate.

Affected packages (2)

Debian/gnutls28from 0, < 3.3.17-1
Debian/gnutls28from 0, < 3.3.8-6+deb8u2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-6251