VDB

GCVE-110-MAGEIA-2015-322

GCVE-110-MAGEIA-2015-322
Advisory Published
Vulnetix · Advisory published August 25, 2015
It was reported that GnuTLS does not check whether the two signature algorithms match on certificate import (CVE-2015-0294). Kurt Roeckx discovered that decoding a specific certificate with very long DistinguishedName (DN) entries leads to double free. A remote attacker can take advantage of this flaw by creating a specially crafted certificate that, when processed by an application compiled against GnuTLS, could cause the application to crash resulting in a denial of service (CVE-2015-6251).

Affected Products

VendorProductVersionsPlatforms
Mageiagnutls3.2.21-1.1.mga5 (unaffected), 0 (affected)
Mageiagnutls0 (affected), 3.2.7-1.7.mga4 (unaffected)

Browse GCVE Records

72,580 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›