3 matches found
CVE-2026-33307
Modgnutls is a TLS module for Apache HTTPD based on GnuTLS. In versions prior to 0.12.3 and 0.13.0, code for client certificate verification imported the certificate chain sent by the client into a fixed size gnutlsx509crtt x509 array without checking the number of certificates is less than or...
mod_gnutls 安全漏洞
modgnutls is a TLS module for Apache HTTPD based on GnuTLS. Versions of modgnutls prior to 0.12.3 and 0.13.0 have security vulnerabilities. These vulnerabilities stem from the fact that client certificate verification does not check the length of the certificate chain, which may lead to...
PT-2017-13212
Name of the Vulnerable Software and Affected Versions mbed TLS versions prior to 1.3.21 mbed TLS versions 2.x prior to 2.1.9 Description The issue allows remote attackers to bypass peer authentication via an X.509 certificate chain with many intermediates, but only if optional authentication is...