CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
96.3%
It was discovered that GnuTLS incorrectly handled parsing CRL distribution
points. A remote attacker could possibly use this issue to cause a denial
of service, or execute arbitrary code. (CVE-2015-3308)
Kurt Roeckx discovered that GnuTLS incorrectly handled a long
DistinguishedName (DN) entry in a certificate. A remote attacker could
possibly use this issue to cause a denial of service, or execute arbitrary
code. (CVE-2015-6251)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 15.04 | noarch | libgnutls-deb0-28 | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | gnutls-bin | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | gnutls-bin-dbgsym | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | gnutls-doc | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | guile-gnutls | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | guile-gnutls-dbgsym | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libgnutls-deb0-28-dbgsym | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libgnutls-dev | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libgnutls-openssl27 | < 3.3.8-3ubuntu3.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libgnutls-openssl27-dbgsym | < 3.3.8-3ubuntu3.1 | UNKNOWN |