vulnerability
FreeBSD: VID-e8b20517-dbb6-11ed-bf28-589cfc0f81b0 (CVE-2023-25824): mod_gnutls -- Infinite Loop on request read timeout
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Apr 15, 2023 | Apr 16, 2023 | Dec 10, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Apr 15, 2023
Added
Apr 16, 2023
Modified
Dec 10, 2025
Description
The mod_gnutls project reports: Mod_gnutls is a TLS module for Apache HTTPD based on GnuTLS. Versions from 0.9.0 to 0.12.0 (including) did not properly fail blocking read operations on TLS connections when the transport hit timeouts. Instead it entered an endless loop retrying the read operation, consuming CPU resources. This could be exploited for denial of service attacks. If trace level logging was enabled, it would also produce an excessive amount of log output during the loop, consuming disk space.
Solution
freebsd-upgrade-package-ap24-mod_gnutls
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.