5

CVE-2015-6251

Double free vulnerability in GnuTLS before 3.3.17 and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service via a long DistinguishedName (DN) entry in a certificate.

Data is provided by the National Vulnerability Database (NVD)
GnuGnutls Version3.3.0 Update-
GnuGnutls Version3.3.0 Updatepre0
GnuGnutls Version3.3.1
GnuGnutls Version3.3.2
GnuGnutls Version3.3.3
GnuGnutls Version3.3.4
GnuGnutls Version3.3.5
GnuGnutls Version3.3.6
GnuGnutls Version3.3.7
GnuGnutls Version3.3.8
GnuGnutls Version3.3.9
GnuGnutls Version3.3.10
GnuGnutls Version3.3.11
GnuGnutls Version3.3.12
GnuGnutls Version3.3.13
GnuGnutls Version3.3.14
GnuGnutls Version3.3.15
GnuGnutls Version3.3.16
GnuGnutls Version3.4.0
GnuGnutls Version3.4.1
GnuGnutls Version3.4.2
GnuGnutls Version3.4.3
DebianDebian Linux Version8.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 6.69% 0.903
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P