gnutls: Fixed possible memory corruption and NULL pointer dereference (important)

2014-06-06T11:04:14
ID OPENSUSE-SU-2014:0763-1
Type suse
Reporter Suse
Modified 2014-06-06T11:04:14

Description

gnutls was patched to fix two security vulnerabilities that could be used to disrupt service or potentially allow remote code execution.

  • Memory corruption during connect (CVE-2014-3466)
  • NULL pointer dereference in gnutls_x509_dn_oid_name (CVE-2014-3465)