CVE-2013-4487

CWE-189 CWE-1938 documents7 sources

Severity

5.0MEDIUM

EPSS

0.3%

top 43.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Gnutls Opensuse Opensuse

Timeline

PublishedNov 20

Latest updateMay 14

Description

Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.16 and 3.2.x before 3.2.6 allows remote servers to cause a denial of service (memory corruption) via a response with more than four DANE entries. NOTE: this issue is due to an incomplete fix for CVE-2013-4466.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶Ubuntugnutls28< 3.2.11-2ubuntu1

▶NVDgnu/gnutls22 versions+21

▶NVDopensuse/opensuse13.1

Patches

Patch: www.openwall.com ↗Patch: gitorious.org ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-h477-mjwp-rx3j: Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3↗2022-05-14

▶

OSV

CVE-2013-4487: Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3↗2013-11-20

▶

CVEList

CVE-2013-4487: Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3↗2013-11-19

▶

📋Vendor Advisories

Red Hat

gnutls: dane_query_tlsa() CVE-2013-4466 fix off-by-one↗2013-10-29

▶

Debian

CVE-2013-4487: gnutls28 - Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3....↗2013

▶

💬Community

Bugzilla

CVE-2013-4487 gnutls: dane_query_tlsa() CVE-2013-4466 fix off-by-one↗2013-11-01

▶

Bugzilla

CVE-2013-4487 gnutls: dnutls: reorganized main loop in dane_raw_tlsa [fedora-all]↗2013-11-01

▶