|
|
|||
Release Date:2015/11/06
Attack Name:SSL GnuTLS DistinguishedName Decoding Double Free (CVE-2015-6251)
Severity:
BUG ID:
CVE ID:
| Description:
|
A double-free vulnerability has been reported in GnuTLS. The vulnerability is due to an error within _gnutls_x509_dn_to_string() while processing very long Distinguished Name values in X.509 certificates.
Impact:Remote code execution
Affected System:Linux, FreeBSD, Solaris, Other Unix
Additional References:CVE-2015-6251
| Solution:
|
Update vendor's patch.