DEBIAN-CVE-2014-1959

DEBIAN-CVE-2014-1959 PUBLISHED

lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates.

Affected Products

Vendor	Product	Versions
Debian:13	gnutls28	0, 0, 0
Debian:14	gnutls28	0, 0, 0
Debian:12	gnutls28	0, 0, 0
Debian:11	gnutls28	0, 0, 0

Exploit Intelligence

glcve_test.go (github-poc)

Timeline

Mar 7, 2014 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2014-1959 advisory

Open in Interactive Console →