CVE-2008-1949 — Improper Authentication in Gnutls

CWE-287 — Improper Authentication CWE-476 — NULL Pointer Dereference6 documents6 sources

Severity

9.3CRITICALNVD

EPSS

15.2%

top 5.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Gnutls

Timeline

PublishedMay 21

Latest updateMay 1

Description

The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 continues to process Client Hello messages within a TLS message after one has already been processed, which allows remote attackers to cause a denial of service (NULL dereference and crash) via a TLS message containing multiple Client Hello messages, aka GNUTLS-SA-2008-1-2.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDgnu/gnutls105 versions+104

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-5mrf-xh4h-r8wx: The _gnutls_recv_client_kx_message function in lib/gnutls_kx↗2022-05-01

▶

CVEList

CVE-2008-1949: The _gnutls_recv_client_kx_message function in lib/gnutls_kx↗2008-05-21

▶

📋Vendor Advisories

Ubuntu

GnuTLS vulnerabilities↗2008-05-21

▶

Red Hat

GNUTLS-SA-2008-1-2 GnuTLS null-pointer dereference↗2008-05-19

▶

💬Community

Bugzilla

CVE-2008-1949 GNUTLS-SA-2008-1-2 GnuTLS null-pointer dereference↗2008-05-19

▶