vulnerability

CentOS Linux: CVE-2017-5334: Moderate: gnutls security, bug fix, and enhancement update (CESA-2017:2292)

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Mar 24, 2017
Added
Aug 28, 2019
Modified
May 25, 2023

Description

Double free vulnerability in the gnutls_x509_ext_import_proxy function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via crafted policy language information in an X.509 certificate with a Proxy Certificate Information extension.

Solution(s)

centos-upgrade-gnutlscentos-upgrade-gnutls-ccentos-upgrade-gnutls-danecentos-upgrade-gnutls-debuginfocentos-upgrade-gnutls-develcentos-upgrade-gnutls-utils
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.