CVE-2015-0282

2015-03-24T17:59:00
ID CVE-2015-0282
Type cve
Reporter cve@mitre.org
Modified 2018-01-05T02:29:00

Description

GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspecified vectors.