CVE-2009-1415

lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488	Exploit
http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515	Patch
http://secunia.com/advisories/34842	Vendor Advisory
http://www.securitytracker.com/id?1022157
http://www.vupen.com/english/advisories/2009/1218
http://www.securityfocus.com/bid/34783
http://www.mandriva.com/security/advisories?name=MDVSA-2009:116
http://security.gentoo.org/glsa/glsa-200905-04.xml
http://secunia.com/advisories/35211
https://exchange.xforce.ibmcloud.com/vulnerabilities/50445
https://exchange.xforce.ibmcloud.com/vulnerabilities/50260
https://exchange.xforce.ibmcloud.com/vulnerabilities/50257

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gnu:gnutls:1.0.16:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.17:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.16:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.17:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.11:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.2:::::::*
	cpe:2.3:a:gnu:gnutls:2.0.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.21:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.24:::::::*
	cpe:2.3:a:gnu:gnutls:2.3.8:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.4:::::::*
	cpe:2.3:a:gnu:gnutls:2.2.2:::::::*
	cpe:2.3:a:gnu:gnutls:2.3.11:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.2:::::::*
	cpe:2.3:a:gnu:gnutls:2.0.4:::::::*
	cpe:2.3:a:gnu:gnutls:2.6.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.10:::::::*
	cpe:2.3:a:gnu:gnutls:2.3.7:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.19:::::::*
	cpe:2.3:a:gnu:gnutls:2.6.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.7:::::::*
	cpe:2.3:a:gnu:gnutls:2.2.1:::::::*
	cpe:2.3:a:gnu:gnutls:2.1.5:::::::*
	cpe:2.3:a:gnu:gnutls:2.3.10:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.22:::::::*
	cpe:2.3:a:gnu:gnutls:2.2.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.8:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.14:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.6.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.21:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.2:::::::*
	cpe:2.3:a:gnu:gnutls:2.2.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.18:::::::*
	cpe:2.3:a:gnu:gnutls:2.1.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.10:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.22:::::::*
	cpe:2.3:a:gnu:gnutls:1.6.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.13:::::::*
	cpe:2.3:a:gnu:gnutls:2.3.2:::::::*
	cpe:2.3:a:gnu:gnutls:2.2.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.19:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.19:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.18:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.4:::::::*
	cpe:2.3:a:gnu:gnutls:2.4.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.8.1a1:::::::*
	cpe:2.3:a:gnu:gnutls:2.0.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.18:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.15:::::::*
	cpe:2.3:a:gnu:gnutls:2.4.2:::::::*
cpe:2.3:a:gnu:gnutls:1.3.0:::::::*
cpe:2.3:a:gnu:gnutls:1.7.14:::::::*
cpe:2.3:a:gnu:gnutls:1.2.3:::::::*
cpe:2.3:a:gnu:gnutls:2.3.6:::::::*
cpe:2.3:a:gnu:gnutls:1.2.9:::::::*
cpe:2.3:a:gnu:gnutls:1.7.17:::::::*
cpe:2.3:a:gnu:gnutls:2.0.1:::::::*
cpe:2.3:a:gnu:gnutls:1.7.6:::::::*
cpe:2.3:a:gnu:gnutls:1.7.1:::::::*
cpe:2.3:a:gnu:gnutls::::::::
cpe:2.3:a:gnu:gnutls:1.7.16:::::::*
cpe:2.3:a:gnu:gnutls:1.6.2:::::::*
cpe:2.3:a:gnu:gnutls:1.3.3:::::::*
cpe:2.3:a:gnu:gnutls:2.3.5:::::::*
cpe:2.3:a:gnu:gnutls:1.6.0:::::::*
cpe:2.3:a:gnu:gnutls:2.3.4:::::::*
cpe:2.3:a:gnu:gnutls:1.7.3:::::::*
cpe:2.3:a:gnu:gnutls:1.4.3:::::::*
cpe:2.3:a:gnu:gnutls:2.6.1:::::::*
cpe:2.3:a:gnu:gnutls:1.7.11:::::::*
cpe:2.3:a:gnu:gnutls:1.0.20:::::::*
cpe:2.3:a:gnu:gnutls:1.2.5:::::::*
cpe:2.3:a:gnu:gnutls:2.2.4:::::::*
cpe:2.3:a:gnu:gnutls:1.2.4:::::::*
cpe:2.3:a:gnu:gnutls:1.7.15:::::::*
cpe:2.3:a:gnu:gnutls:1.7.8:::::::*
cpe:2.3:a:gnu:gnutls:1.7.0:::::::*
cpe:2.3:a:gnu:gnutls:2.1.0:::::::*
cpe:2.3:a:gnu:gnutls:2.3.1:::::::*
cpe:2.3:a:gnu:gnutls:2.1.1:::::::*
cpe:2.3:a:gnu:gnutls:1.1.20:::::::*
cpe:2.3:a:gnu:gnutls:2.1.7:::::::*
cpe:2.3:a:gnu:gnutls:2.6.0:::::::*
cpe:2.3:a:gnu:gnutls:2.1.6:::::::*
cpe:2.3:a:gnu:gnutls:2.3.9:::::::*
cpe:2.3:a:gnu:gnutls:2.6.2:::::::*
cpe:2.3:a:gnu:gnutls:1.7.9:::::::*
cpe:2.3:a:gnu:gnutls:2.1.3:::::::*
cpe:2.3:a:gnu:gnutls:2.4.1:::::::*
cpe:2.3:a:gnu:gnutls:1.1.13:::::::*
cpe:2.3:a:gnu:gnutls:1.2.2:::::::*
cpe:2.3:a:gnu:gnutls:1.2.7:::::::*
cpe:2.3:a:gnu:gnutls:1.0.25:::::::*
cpe:2.3:a:gnu:gnutls:2.1.2:::::::*
cpe:2.3:a:gnu:gnutls:1.0.23:::::::*
cpe:2.3:a:gnu:gnutls:1.1.23:::::::*
cpe:2.3:a:gnu:gnutls:1.2.6:::::::*
cpe:2.3:a:gnu:gnutls:2.3.3:::::::*
cpe:2.3:a:gnu:gnutls:2.1.8:::::::*
cpe:2.3:a:gnu:gnutls:1.7.12:::::::*
cpe:2.3:a:gnu:gnutls:2.0.2:::::::*
cpe:2.3:a:gnu:gnutls:2.3.0:::::::*
cpe:2.3:a:gnu:gnutls:1.4.4:::::::*

Information

Published : 2009-04-30 13:30

Updated : 2017-08-16 18:30

NVD link : CVE-2009-1415

Mitre link : CVE-2009-1415

JSON object : View

CWE

CWE-255

Credentials Management Errors

Products Affected

gnu

gnutls

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488", "name": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488", "tags": ["Exploit"], "refsource": "CONFIRM"}, {"url": "http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502", "name": "[gnutls-devel] 20090423 Re: some crashes on using DSA keys", "tags": [], "refsource": "MLIST"}, {"url": "http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515", "name": "[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415]", "tags": ["Patch"], "refsource": "MLIST"}, {"url": "http://secunia.com/advisories/34842", "name": "34842", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1022157", "name": "1022157", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.vupen.com/english/advisories/2009/1218", "name": "ADV-2009-1218", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.securityfocus.com/bid/34783", "name": "34783", "tags": [], "refsource": "BID"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:116", "name": "MDVSA-2009:116", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://security.gentoo.org/glsa/glsa-200905-04.xml", "name": "GLSA-200905-04", "tags": [], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/35211", "name": "35211", "tags": [], "refsource": "SECUNIA"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50445", "name": "gnutls-libgnutls-dos(50445)", "tags": [], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50260", "name": "gnutls-dsa-dos(50260)", "tags": [], "refsource": "XF"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50257", "name": "gnutls-dsa-code-execution(50257)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-255"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2009-1415", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2009-04-30T20:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.4.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.5.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.8.1a1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.5.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.6.5"}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.4.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.0.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.1.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.2.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.1.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.7.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:2.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnu:gnutls:1.4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-17T01:30Z"}

4.3 /10