QwikSec

Security Database

CVE

CWE

Training

CVE-2014-1959

Published: Mar 6, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

lib/x509/verify.c in GnuTLS before 3.1.21 and 3.2.x before 3.2.11 treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new certificates.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.gnutls.org/security.html

x_refsource_CONFIRM

[oss-security] 20140213 CVE Request - GnuTLS corrects flaw in certificate verification (3.1.x/3.2.x)

mailing-list

x_refsource_MLIST

[oss-security] 20140213 Re: CVE Request - GnuTLS corrects flaw in certificate verification (3.1.x/3.2.x)

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_UBUNTU

https://www.gitorious.org/gnutls/gnutls/commit/b1abfe3d182d68539900092eb42fc62cf1bb7e7c

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.