#VU87672 Input validation error in GnuTLS


Published: 2024-03-20

Vulnerability identifier: #VU87672

Vulnerability risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-28835

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
GnuTLS
Universal components / Libraries / Libraries used by multiple products

Vendor: GnuTLS

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when parsing the cert_list_size parameter in the gnutls_x509_trust_list_verify_crt2() function in certtool. A remote attacker can pass specially crafted PEM encoded certificate chain that contains more than 16 certificates to the certtool and crash it.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

GnuTLS: 3.0 - 3.8.3

External links
http://gitlab.com/gnutls/gnutls/-/issues/1527
http://gitlab.com/gnutls/gnutls/-/issues/1525

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Red Hat Enterprise Linux 9 update for gnutls
Ubuntu update for gnutls28
openEuler 22.03 LTS SP3 update for gnutls
openEuler 22.03 LTS SP2 update for gnutls
openEuler 22.03 LTS update for gnutls
openEuler 22.03 LTS SP1 update for gnutls
Red Hat Enterprise Linux 9 update for gnutls
Ubuntu update for gnutls28
SUSE update for gnutls
Fedora 38 update for gnutls