GCVE - cpe:2.3:a:gnu:gnutls:3.1.7:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:gnu:gnutls:3.1.7:*:*:*:*:*:*:*

part: a version: 3.1.7 update: *

Vendor	Gnu (`575dd98a-a14a-5d9e-a2eb-97d38d86fcb9`)
Product	Gnutls (`955d43fd-13b7-57ed-9845-207af9eef570`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/gnutls/gnutls`	purl2cpe	2026-06-01 10:11:56.107892
`pkg:gitlab/gnutls/gnutls`	purl2cpe	2026-06-01 10:11:56.107893
`pkg:gnu/gnutls`	purl2cpe	2026-06-01 10:11:56.107894
`pkg:rpm/fedora/gnutls`	purl2cpe	2026-06-01 10:11:56.107896
`pkg:rpm/opensuse/gnutls`	purl2cpe	2026-06-01 10:11:56.107897

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2014-8564`	vulnerable	2026-06-03 14:34:24.495399	Details available The _gnutls_ecc_ansi_x963_export function in gnutls_ecc.c in GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) Elliptic Curve Cryptography (ECC) certificate or (2) certificate signing requests (CSR), related to generating key IDs. Published: 2014-11-13T15:00:00.000Z Updated: 2024-08-06T13:18:48.419Z Open on db.gcve.eu Reference links http://secunia.com/advisories/59991 http://rhn.redhat.com/errata/RHSA-2014-1846.html http://www.ubuntu.com/usn/USN-2403-1 http://secunia.com/advisories/62294 https://bugzilla.redhat.com/show_bug.cgi?id=1161443	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3466`	vulnerable	2026-06-03 14:33:54.598196	Details available Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows remote servers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a long session id in a ServerHello message. Published: 2014-06-03T14:00:00.000Z Updated: 2024-08-06T10:43:06.197Z Open on db.gcve.eu Reference links http://www.gnutls.org/security.html http://www-01.ibm.com/support/docview.wss?uid=swg21678776 http://www.debian.org/security/2014/dsa-2944 http://secunia.com/advisories/58340 http://rhn.redhat.com/errata/RHSA-2014-0595.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-3465`	vulnerable	2026-06-03 14:33:54.590895	Details available The gnutls_x509_dn_oid_name function in lib/x509/common.c in GnuTLS 3.0 before 3.1.20 and 3.2.x before 3.2.10 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted X.509 certificate, related to a missing LDAP description for an OID when printing the DN. Published: 2014-06-10T14:00:00.000Z Updated: 2024-08-06T10:43:06.429Z Open on db.gcve.eu Reference links http://lists.gnutls.org/pipermail/gnutls-help/2014-January/003326.html https://bugzilla.redhat.com/show_bug.cgi?id=1101734 http://secunia.com/advisories/59086 http://rhn.redhat.com/errata/RHSA-2014-0684.html http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00007.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-1959`	vulnerable	2026-06-03 14:33:49.094183	Details available lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates. Published: 2014-03-06T18:00:00.000Z Updated: 2024-08-06T09:58:15.628Z Open on db.gcve.eu Reference links http://www.gnutls.org/security.html http://seclists.org/oss-sec/2014/q1/344 http://seclists.org/oss-sec/2014/q1/345 http://www.securityfocus.com/bid/65559 http://www.ubuntu.com/usn/USN-2121-1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-0092`	vulnerable	2026-06-03 14:33:36.778473	Details available lib/x509/verify.c in GnuTLS before 3.1.22 and 3.2.x before 3.2.12 does not properly handle unspecified errors when verifying X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers via a crafted certificate. Published: 2014-03-06T18:00:00.000Z Updated: 2024-08-06T09:05:38.662Z Open on db.gcve.eu Reference links http://secunia.com/advisories/57321 http://secunia.com/advisories/57260 http://rhn.redhat.com/errata/RHSA-2014-0288.html http://gnutls.org/security.html#GNUTLS-SA-2014-2 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00020.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-4487`	vulnerable	2026-06-03 14:33:17.197426	Details available Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.16 and 3.2.x before 3.2.6 allows remote servers to cause a denial of service (memory corruption) via a response with more than four DANE entries. NOTE: this issue is due to an incomplete fix for CVE-2013-4466. Published: 2013-11-19T19:00:00.000Z Updated: 2024-09-16T21:09:04.901Z Open on db.gcve.eu Reference links http://lists.opensuse.org/opensuse-updates/2013-11/msg00064.html http://www.openwall.com/lists/oss-security/2013/10/31/4 https://gitorious.org/gnutls/gnutls/commit/0dd5529509e46b11d5c0f3f26f99294e0e5fa6dc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-4466`	vulnerable	2026-06-03 14:33:16.875564	Details available Buffer overflow in the dane_query_tlsa function in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.15 and 3.2.x before 3.2.5 allows remote servers to cause a denial of service (memory corruption) via a response with more than four DANE entries. Published: 2013-11-19T19:00:00.000Z Updated: 2024-09-16T20:21:16.336Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2013/10/25/2 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7050 http://www.gnutls.org/security.html#GNUTLS-SA-2013-3 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/7049	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.