CVE-2021-20232

A flaw was found in gnutls. A use after free issue in clientsendparams in lib/ext/presharedkey.c may lead to memory corruption and other potential consequences...

CVE-2021-20232

A flaw was found in gnutls. A use after free issue in clientsendparams in lib/ext/presharedkey.c may lead to memory corruption and other potential consequences...

CVE-2021-20232

A vulnerability in GnuTLS (CVE-2021-20232) stems from a use-after-free in client_send_params (lib/ext/pre_shared_key.c), which may cause memory corruption and other consequences. The issue is within the GnuTLS library, affecting TLS 1.3 client handling of pre_shared_key extensions. Documented imp...

CVE-2021-20232

A flaw was found in gnutls. A use after free issue in clientsendparams in lib/ext/presharedkey.c may lead to memory corruption and other potential consequences...

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and other consequences...

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and other consequences...

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and other consequences...

CVE-2021-20231

The CVE-2021-20231 issue affects the GnuTLS library (gnutls) in the client handling of the TLS 1.3 key_share extension. The root cause is a use-after-free vulnerability that can result from dereferencing a pointer after realloc in the client path handling key_share, leading to memory corruption. ...

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and denial of service...

CVE-2021-20232

A flaw was found in gnutls. A use after free issue in clientsendparams in lib/ext/presharedkey.c may lead to memory corruption and denial of service...

GnuTLS 资源管理错误漏洞

GnuTLS is a free secure communication library for implementing SSL, TLS and DTLS protocols. A security vulnerability exists in gnutls, which stems from the fact that free after-use of a client-sent key sharing extension may result in memory corruption and other consequences...

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and other consequences...

CVE-2021-20232

A flaw was found in gnutls. A use after free issue in clientsendparams in lib/ext/presharedkey.c may lead to memory corruption and other potential consequences...

GnuTLS 资源管理错误漏洞

GnuTLS is a free secure communication library for implementing SSL, TLS and DTLS protocols. A security vulnerability exists in gnutls, which originates from memory corruption due to clientsendparams in lib/ext/presharedkey.c...

NewStart CGSL MAIN 6.02 : gnutls Vulnerability (NS-SA-2021-0074)

The remote NewStart CGSL host, running version MAIN 6.02, has gnutls packages installed that are affected by a vulnerability: - An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a norenegotiation alert is sent with unexpected...

OESA-2021-1046 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2021-1582)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.6.0 : gnutls (EulerOS-SA-2021-1582)

According to the version of the gnutls packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a...

EulerOS 2.0 SP2 : mutt (EulerOS-SA-2021-1330)

According to the versions of the mutt package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate...

CentOS 8 : gnutls (CESA-2020:2637)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:2637 advisory. - gnutls: session resumption works without master key allowing MITM CVE-2020-13777 Note that Nessus has not tested for this issue but has instead relied only on...