CVE-2014-3465

描述

The gnutls_x509_dn_oid_name function in lib/x509/common.c in GnuTLS 3.0 before 3.1.20 and 3.2.x before 3.2.10 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted X.509 certificate, related to a missing LDAP description for an OID when printing the DN.

受影響套件(1)

• Debian/gnutls28from 0, < 3.2.10-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3465