CVE-2022-2509

Summary

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.

Affected Software

VendorProductVersion RangeStatus
n/aGnuTLSgnutls 3.7.7(Fixed)affected

Weaknesses

  • Double Free

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References