Home CVE Database CVE-2017-7869

CVE-2017-7869

Description

GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_read function in opencdk/read-packet.c. This issue (which is a subset of the vendor\'s GNUTLS-SA-2017-3 report) is fixed in 3.5.10.

Priority: MEDIUM
CVSS v3: 7.5
Publish Date: Apr 14, 2017
Related ID: --
CVSS v2: High
Modified Date: Apr 18, 2017

Find out more about CVE-2017-7869 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Product Name Status Defect Fixed Downloads
Linux
Wind River Linux LTS 17 Not Vulnerable -- -- --
Wind River Linux 8 Fixed LIN8-6511
8.0.0.18 --
Wind River Linux 9 Fixed LIN9-4034
9.0.0.7 --
Wind River Linux 7 Fixed -- 7.0.0.25 --
Wind River Linux LTS 18 Not Vulnerable -- -- --
Wind River Linux LTS 19 Not Vulnerable -- -- --
Wind River Linux CD release Not Vulnerable -- -- --
VxWorks
VxWorks 7 Not Vulnerable -- -- --
VxWorks 6.9 Not Vulnerable -- -- --

Related Products

Product Name Status Defect Fixed Downloads

Comments

gnutls

Live chat
Online