CVE-2008-4989
published 2008-11-13CVE-2008-4989: The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate…
medium5.9CVSS 3.1
AVNACHPRNUINSUCNIHAN
The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed certificate, which allows man-in-the-middle attackers to insert a spoofed certificate for any Distinguished Name (DN).
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| gnu | gnutls | < 2.6.1 | 2.6.1 |
| opensuse | opensuse | 10.3 – 11.1 | — |
| suse | linux_enterprise | — | — |
| suse | linux_enterprise | — | — |
| suse | linux_enterprise_server | — | — |
| suse | linux_enterprise_server | — | — |