CVE-2008-1948
- ULN >
- Oracle Linux CVE repository >
- CVE-2008-1948
CVE Details
| Release Date: | 2008-05-21 |
Description
The _gnutls_server_name_recv_params function in lib/ext_server_name.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hello message during extension handling, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a zero value for the length of Server Names, which leads to a buffer overflow in session resumption data in the pack_security_parameters function, aka GNUTLS-SA-2008-1-1.
See more information about CVE-2008-1948 from MITRE CVE dictionary and NIST NVD
CVSS v2.0 metrics
NOTE: The following CVSS v2.0 metrics and score provided are preliminary and subject to review.
| Base Score: | 10 | Base Metrics: | AV:N/AC:L/Au:N/C:C/I:C/A:C |
| Access Vector: | Network | Attack Complexity: | Low |
| Authentication: | None required | Confidentiality Impact: | Complete |
| Integrity Impact: | Complete | Availability Impact: | Complete |
Errata information
| Platform | Errata | Release Date |
| Oracle Enterprise Linux version 4 (gnutls) | ELSA-2008-0492 | 2008-05-20 |
| Oracle Linux version 5 (gnutls) | ELSA-2008-0489 | 2008-05-20 |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
