Start your free trial today.
Protect your organization with cutting-edge cybersecurity solutions designed for resilience and efficiency. Secure your digital assets with confidence.
Your Shield Against Threats
Unleash the Power of Cybersecurity
Boost Your Security, Enhance Your Business
We solve Your Cyber Challenges
Quick Links
Resources
Deepaegis Portals
2025 Deepaegis. All Rights Reserved.
A flaw was found in GnuTLS. A double-free vulnerability exists due to incorrect ownership handling in the export logic of Subject Alternative Name (SAN) entries containing an otherName.
This vulnerability may lead to denial of service (DoS) or memory corruption, depending on how the memory allocator handles the double-free. It poses a risk primarily to availability and potentially to system stability.
GnuTLS Library
Remediation: Red Hat and the GnuTLS project are expected to provide patches. Users are advised to monitor vendor advisories and apply updates once available.
Awaiting official patch from vendor.
No temporary fixes provided
Monitor systems using GnuTLS for abnormal behavior. Restrict exposed API surfaces where possible.
Monitor memory usage, crashes, and access logs for malformed SAN entries passed through GnuTLS.
Not specified
Not specified
No references provided
No affected organizations specified
This document contains sensitive information. Unauthorized distribution is prohibited.