Lucene search
Veracode Vulnerability DatabaseVERACODE:46363HistoryApr 11, 2024 - 2:00 a.m.
Denial Of Service (DoS)
2024-04-1102:00:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
gnutls vulnerability dos resource consumption certtool crash
gnutls is vulnerable to Denial of Service(DoS). The vulnerability is due to excessive resource consumption caused by the “certtool --verify-chain” command when verifying a specially crafted .pem bundle, leading to an application crash.
References
www.openwall.com/lists/oss-security/2024/03/22/1
www.openwall.com/lists/oss-security/2024/03/22/2
access.redhat.com/errata/RHSA-2024:1879
access.redhat.com/errata/RHSA-2024:2570
access.redhat.com/errata/RHSA-2024:2889
access.redhat.com/security/cve/CVE-2024-28835
bugzilla.redhat.com/show_bug.cgi?id=2269084
lists.gnupg.org/pipermail/gnutls-help/2024-March/004845.html
secdb.alpinelinux.org/v3.18/main.yaml
secdb.alpinelinux.org/v3.19/main.yaml
Related
redhatcve
redhatcve
CVE-2024-28835
2024-03-21 06:08:56
osv
osv
CVE-2024-28835
2024-03-21 06:15:45
Moderate: gnutls security update
2024-04-18 00:00:00
gnutls28 vulnerabilities
2024-04-29 11:38:34
cve
cve
CVE-2024-28835
2024-03-21 06:15:45
cvelist
cvelist
CVE-2024-28835 Gnutls: potential crash during chain building/verification
2024-03-21 06:13:26
ubuntucve
ubuntucve
CVE-2024-28835
2024-03-21 00:00:00
debiancve
debiancve
CVE-2024-28835
2024-03-21 06:15:45
nessus
nessus
AlmaLinux 9 : gnutls (ALSA-2024:1879)
2024-04-18 00:00:00
RHEL 9 : gnutls (RHSA-2024:1879)
2024-04-18 00:00:00
Rocky Linux 9 : gnutls (RLSA-2024:2570)
2024-05-14 00:00:00
oraclelinux
oraclelinux
gnutls security update
2024-05-08 00:00:00
gnutls security update
2024-05-07 00:00:00
gnutls security update
2024-04-18 00:00:00
rocky
rocky
gnutls security update
2024-05-10 14:32:36
openvas
openvas
Slackware: Security Advisory (SSA:2024-079-01)
2024-03-20 00:00:00
Ubuntu: Security Advisory (USN-6733-1)
2024-04-16 00:00:00
Ubuntu: Security Advisory (USN-6733-2)
2024-04-30 00:00:00
redhat
redhat
(RHSA-2024:2889) Moderate: gnutls security update
2024-05-16 11:35:49
(RHSA-2024:1879) Moderate: gnutls security update
2024-04-18 00:58:47
(RHSA-2024:2570) Moderate: gnutls security update
2024-04-30 11:38:54
cloudfoundry
cloudfoundry
USN-6733-1: GnuTLS vulnerabilities | Cloud Foundry
2024-05-23 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: gnutls-3.8.4-1.fc39
2024-03-24 01:07:12
[SECURITY] Fedora 38 Update: gnutls-3.8.4-1.fc38
2024-03-31 01:54:40
[SECURITY] Fedora 40 Update: gnutls-3.8.5-1.fc40
2024-04-19 21:42:06
mageia
mageia
Updated gnutls packages fix security vulnerabilities
2024-03-26 11:00:24
almalinux
almalinux
Moderate: gnutls security update
2024-04-30 00:00:00
Moderate: gnutls security update
2024-04-18 00:00:00
ubuntu
ubuntu
GnuTLS vulnerabilities
2024-04-29 00:00:00
slackware
slackware
[slackware-security] gnutls
2024-03-20 00:27:18
