An issue exists in LINBIT csync2 up to and including 2.0. It does not correctly check for the return value GNUTLS_E_WARNING_ALERT_RECEIVED of the gnutls_handshake() function. It neglects to call this function again, as required by the design of the API.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linbit csync2 |
||
debian debian linux 9.0 |