CVE-2008-1948

2008-05-2100:00:00

ubuntu.com

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.084 Low

EPSS

Percentile

94.5%

JSON

The _gnutls_server_name_recv_params function in lib/ext_server_name.c in
libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate
the number of Server Names in a TLS 1.0 Client Hello message during
extension handling, which allows remote attackers to cause a denial of
service (crash) or possibly execute arbitrary code via a zero value for the
length of Server Names, which leads to a buffer overflow in session
resumption data in the pack_security_parameters function, aka
GNUTLS-SA-2008-1-1.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchgnutls12< 1.2.9-2ubuntu1.2UNKNOWN
ubuntu7.04noarchgnutls13< 1.4.4-3ubuntu0.1UNKNOWN
ubuntu7.10noarchgnutls13< 1.6.3-1ubuntu0.1UNKNOWN
ubuntu8.04noarchgnutls13< 2.0.4-1ubuntu2.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	gnutls12	< 1.2.9-2ubuntu1.2	UNKNOWN
ubuntu	7.04	noarch	gnutls13	< 1.4.4-3ubuntu0.1	UNKNOWN
ubuntu	7.10	noarch	gnutls13	< 1.6.3-1ubuntu0.1	UNKNOWN
ubuntu	8.04	noarch	gnutls13	< 2.0.4-1ubuntu2.1	UNKNOWN