GnuTLS 'lib/opencdk/read-packet.c' Multiple Heap Buffer Overflow Vulnerabilities

GnuTLS is prone to multiple heap-based buffer overflow vulnerabilities because it fails to properly bounds check user-supplied data before copying it into an insufficiently sized buffer.

Attackers can exploit these issues to execute arbitrary code within the context of affected application or cause denial-of-service condition.

Versions prior to GnuTLS 3.3.26 and 3.5.8 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus