QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2014-3466

Back to search

CVE-2014-3466

Published: Jun 3, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Buffer overflow in the read_server_hello function in lib/gnutls_handshake.c in GnuTLS before 3.1.25, 3.2.x before 3.2.15, and 3.3.x before 3.3.4 allows remote servers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a long session id in a ServerHello message.

VendorProductVersions

n/a

n/a

affected
n/a

References

DSA-2944
vendor-advisory
x_refsource_DEBIAN
58340
third-party-advisory
x_refsource_SECUNIA
RHSA-2014:0595
vendor-advisory
x_refsource_REDHAT
USN-2229-1
vendor-advisory
x_refsource_UBUNTU
58642
third-party-advisory
x_refsource_SECUNIA
67741
vdb-entry
x_refsource_BID
59057
third-party-advisory
x_refsource_SECUNIA
59086
third-party-advisory
x_refsource_SECUNIA
SUSE-SU-2014:0758
vendor-advisory
x_refsource_SUSE
RHSA-2014:0684
vendor-advisory
x_refsource_REDHAT
openSUSE-SU-2014:0763
vendor-advisory
x_refsource_SUSE
59021
third-party-advisory
x_refsource_SECUNIA
RHSA-2014:0815
vendor-advisory
x_refsource_REDHAT
58598
third-party-advisory
x_refsource_SECUNIA
59838
third-party-advisory
x_refsource_SECUNIA
SUSE-SU-2014:0788
vendor-advisory
x_refsource_SUSE
60384
third-party-advisory
x_refsource_SECUNIA
RHSA-2014:0594
vendor-advisory
x_refsource_REDHAT
59016
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2014:0767
vendor-advisory
x_refsource_SUSE
58601
third-party-advisory
x_refsource_SECUNIA
59408
third-party-advisory
x_refsource_SECUNIA
1030314
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now