GnuTLS vulnerability

ID USN-348-1
Type ubuntu
Reporter Ubuntu
Modified 2006-09-19T00:00:00


The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.