CVE-2017-7507

Summary

GnuTLS version 3.5.12 and earlier is vulnerable to a NULL pointer dereference while decoding a status response TLS extension with valid contents. This could lead to a crash of the GnuTLS server application.

Affected Software

VendorProductVersion RangeStatus
GnuTLSgnutls3.5.12affected

Weaknesses

  • NULL pointer dereference

ADP Enrichment

CVE Program Container

Additional References

References