CVE-2022-2509

Severity CVSS v4.0:
Pending analysis
Type:
CWE-415 Double Free
Publication date:
01/08/2022
Last modified:
07/11/2023

Description

A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 signatures in gnutls_pkcs7_verify function.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:* 3.7.7 (excluding)
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*