Alpaquita Linux
Security Advisory

CVE-2012-1573

Published: March 26, 2012Last modified: November 10, 2023

Description

gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) via a crafted record, as demonstrated by a crafted GenericBlockCipher structure.

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSgnutlsNot affected (3.7.8-r3)
StreamgnutlsNot affected (3.8.1-r0)

References

ON THIS PAGE