CVE-2014-1959
EPSS 0.23%gnutls26 - certificate verification flaw
發布日:2014/3/7修改日:2026/4/28
描述
lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates.
受影響套件(2)
- Debian/gnutls26from 0, < 2.12.20-8
- Debian/gnutls28from 0, < 3.2.11-1