CVE-2024-12243

Published: Feb 10, 2025

Modified: May 12, 2026

PUBLISHED

CVSS v3.1

5.3

MEDIUM

Description

A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.

Vendor	Product	Versions
Unknown	gnutls	affected `0 - <= 3.6.16` affected `3.7.0 - <= 3.7.11` affected `3.8.0 - < 3.8.8` unaffected `3.8.9 - < *`
Red Hat	Red Hat Enterprise Linux 8	unaffected `0:3.6.16-8.el8_10.3 - < *`
Red Hat	Red Hat Enterprise Linux 8	unaffected `0:3.6.16-8.el8_10.3 - < *`
Red Hat	Red Hat Enterprise Linux 9	unaffected `0:3.8.3-6.el9 - < *`
Red Hat	Red Hat Enterprise Linux 9	unaffected `0:3.8.3-6.el9 - < *`
Red Hat	Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions	unaffected `0:3.7.6-21.el9_2.4 - < *`
Red Hat	Red Hat Enterprise Linux 9.4 Extended Update Support	unaffected `0:3.8.3-4.el9_4.2 - < *`
Red Hat	Red Hat Discovery 1.14	unaffected `sha256:ad1045aa0de937c3a6969ec377f7bfeda9a44ee434a954e8245e9840316ffc1c - < *`
Red Hat	Red Hat Discovery 1.14	unaffected `sha256:c960fa13577db72b52765d6941688f431f61fe38adb717b2d8bb6569e241bc5e - < *`
Red Hat	Red Hat Enterprise Linux 10	All versions
Red Hat	Red Hat Enterprise Linux 6	All versions
Red Hat	Red Hat Enterprise Linux 7	All versions
Red Hat	Red Hat OpenShift Container Platform 4	All versions