VDB

GCVE-110-MAGEIA-2014-458

GCVE-110-MAGEIA-2014-458
Advisory Published
Vulnetix · Advisory published November 15, 2014
An out-of-bounds memory write flaw was found in the way GnuTLS parsed certain ECC (Elliptic Curve Cryptography) certificates or certificate signing requests (CSR). A malicious user could create a specially crafted ECC certificate or a certificate signing request that, when processed by an application compiled against GnuTLS (for example, certtool), could cause that application to crash or execute arbitrary code with the permissions of the user running the application (CVE-2014-8564).

Affected Products

VendorProductVersionsPlatforms
Mageiagnutls3.1.16-1.4.mga3 (unaffected), 0 (affected)
Mageiagnutls0 (affected), 3.2.7-1.4.mga4 (unaffected)

Browse GCVE Records

73,196 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›