Bug 2044156 (CVE-2021-4209) - CVE-2021-4209 GnuTLS: Null pointer dereference in MD_UPDATE
Summary: CVE-2021-4209 GnuTLS: Null pointer dereference in MD_UPDATE
Keywords:
Status: NEW
Alias: CVE-2021-4209
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2048765 2055368 2055369 2055374 2055375 2055376
Blocks: 2044141
TreeView+ depends on / blocked
 
Reported: 2022-01-24 07:04 UTC by Dhananjay Arunesh
Modified: 2024-03-29 03:35 UTC (History)
25 users (show)

Fixed In Version: gnutls 3.7.3
Doc Type: If docs needed, set a value
Doc Text:
A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description Dhananjay Arunesh 2022-01-24 07:04:17 UTC 
Using gnutls with guile disabled, null pointer may passed to memcpy as argument 2, causing null pointer dereference.
Comment 3 Mauro Matteo Cascella 2022-02-16 19:08:53 UTC 
Upstream MR:
https://gitlab.com/gnutls/gnutls/-/merge_requests/1503

Upstream commit:
https://gitlab.com/gnutls/gnutls/-/commit/3db352734472d851318944db13be73da61300568
Comment 4 Mauro Matteo Cascella 2022-02-16 19:19:41 UTC 
Created gnutls tracking bugs for this issue:

Affects: fedora-all [bug 2055368]


Created mingw-gnutls tracking bugs for this issue:

Affects: fedora-all [bug 2055369]
Note You need to log in before you can comment on or make changes to this bug.