A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.
[
{
"product": "GnuTLS",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "gnutls 3.7.7(Fixed)"
}
]
}
]
access.redhat.com/security/cve/CVE-2022-2509
lists.debian.org/debian-lts-announce/2022/08/msg00002.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FL27JS3VM74YEQU7PGB62USO3KSBYZX/
lists.gnupg.org/pipermail/gnutls-help/2022-July/004746.html
www.debian.org/security/2022/dsa-5203