FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
1cd0c17a-17c0-11ed-91a5-080027f5fec9	gnutls -- double free vulnerability The GnuTLS project reports: When gnutls_pkcs7_verify cannot verify signature against given trust list, it starts creating a chain of certificates starting from identified signer up to known root. During the creation of this chain the signer certificate gets freed which results in double free when the same signer certificate is freed at the end of the algorithm. Discovery 2022-07-07 Entry 2022-08-09 gnutls ge 3.6.0 lt 3.7.7 CVE-2022-2509 https://www.gnutls.org/security-new.html#GNUTLS-SA-2022-07-07

VuXML ID

Description

1cd0c17a-17c0-11ed-91a5-080027f5fec9

gnutls -- double free vulnerability

The GnuTLS project reports:

When gnutls_pkcs7_verify cannot verify signature against given trust list, it starts creating a chain of certificates starting from identified signer up to known root. During the creation of this chain the signer certificate gets freed which results in double free when the same signer certificate is freed at the end of the algorithm.

Discovery 2022-07-07
Entry 2022-08-09
gnutls

ge 3.6.0 lt 3.7.7

CVE-2022-2509
https://www.gnutls.org/security-new.html#GNUTLS-SA-2022-07-07