A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu gnutls |
||
redhat enterprise linux 8.0 |
||
netapp solidfire \\& hci management node - |
||
netapp active iq unified manager - |
||
netapp hci_bootstrap_os - |