A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or malicious user to initiate a denial of service attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu gnutls |
||
fedoraproject fedora 38 |
||
fedoraproject fedora 39 |
||
netapp active iq unified manager - |
||
debian debian linux 11.0 |