CVE-2008-1950 — Gnutls vulnerability

CWE-1896 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

8.2%

top 7.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Gnutls

Timeline

PublishedMay 21

Latest updateMay 1

Description

Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service (buffer over-read and crash) via a certain integer value in the Random field in an encrypted Client Hello message within a TLS record with an invalid Record Length, which leads to an invalid cipher padding length, aka GNUTLS-SA-2008-1-3.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDgnu/gnutls105 versions+104

Patches

Patch: lists.gnu.org ↗Patch: www.openwall.com ↗Patch: lists.gnu.org ↗

🔴Vulnerability Details

GHSA

GHSA-4qv6-g5fw-f876: Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher↗2022-05-01

▶

CVEList

CVE-2008-1950: Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher↗2008-05-21

▶

📋Vendor Advisories

Ubuntu

GnuTLS vulnerabilities↗2008-05-21

▶

Red Hat

GNUTLS-SA-2008-1-3 GnuTLS memory overread flaw↗2008-05-19

▶

💬Community

Bugzilla

CVE-2008-1950 GNUTLS-SA-2008-1-3 GnuTLS memory overread flaw↗2008-05-19

▶