oss-sec mailing list archives

double-free in gnutls (CRL distribution points parsing)

From: Robert Święcki <robert () swiecki net>
Date: Wed, 15 Apr 2015 15:47:36 +0200

gnutls 3.3.14 fixes a double-free in parsing CRL distribution points.

It will affect applications which parse CRL distribution points or
print contents of certificates with gnutls-provided functions (e.g.
gnutls_x509_crt_print())

Usually a DoS under modern mem allocators, but creating something more
interesting using double-free exploitation techniques is not out of
the question

changelists:
https://gitlab.com/gnutls/gnutls/commit/d6972be33264ecc49a86cd0958209cd7363af1e9
https://gitlab.com/gnutls/gnutls/commit/053ae65403216acdb0a4e78b25ad66ee9f444f02

-- 
Robert Święcki

Current thread:

double-free in gnutls (CRL distribution points parsing) Robert Święcki (Apr 15)
- Re: double-free in gnutls (CRL distribution points parsing) cve-assign (Apr 15)