vulnerability

Oracle Linux: CVE-2021-20232: ELSA-2022-9221: gnutls security update (MODERATE) (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:N/AC:H/Au:N/C:N/I:N/A:P)	2021-03-12	2021-11-17	2024-12-06

Severity

CVSS

(AV:N/AC:H/Au:N/C:N/I:N/A:P)

Published

2021-03-12

Added

2021-11-17

Modified

2024-12-06

Description

A flaw was found in gnutls. A use after free issue in client_send_params in lib/ext/pre_shared_key.c may lead to memory corruption and other potential consequences.
A flaw was found in gnutls. A use after free issue in client_send_params in lib/ext/pre_shared_key.c may lead to memory corruption and denial of service.

Solution(s)

oracle-linux-upgrade-gnutlsoracle-linux-upgrade-gnutls-coracle-linux-upgrade-gnutls-daneoracle-linux-upgrade-gnutls-develoracle-linux-upgrade-gnutls-utilsoracle-linux-upgrade-nettleoracle-linux-upgrade-nettle-devel

References

CVE-2021-20232
https://attackerkb.com/topics/CVE-2021-20232
ELSA-ELSA-2022-9221
ELSA-ELSA-2021-4451

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today