CVE-2019-3829

Summary

A vulnerability was found in gnutls versions from 3.5.8 before 3.6.7. A memory corruption (double free) vulnerability in the certificate verification API. Any client or server application that verifies X.509 certificates with GnuTLS 3.5.8 or later is affected.

Affected Software

VendorProductVersion RangeStatus
gnutlsgnutlsfixed in 3.6.7affected
gnutlsgnutlsaffected from 3.5.8affected

Weaknesses

  • CWE-416: CWE-416

ADP Enrichment

CVE Program Container

Additional References

References