CVE-2015-6251

Currently unrated

Key Information:

Vendor: Gnu
Status: Gnutls
Vendor: CVE Published:; 24 August 2015

Summary

Double free vulnerability in GnuTLS before 3.3.17 and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service via a long DistinguishedName (DN) entry in a certificate.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1251902

x_refsource_CONFIRM

http://lists.opensuse.org/opensuse-updates/2015-09/msg000...

vendor-advisoryx_refsource_SUSE

http://www.securitytracker.com/id/1033226

vdb-entryx_refsource_SECTRACK

EPSS Score

18% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 24, 2015
Vulnerability Reserved
Aug 17, 2015