Vulnerabilities > GNU > Gnutls > 3.5.9

DATE CVE VULNERABILITY TITLE RISK
2017-06-16 CVE-2017-7507 NULL Pointer Dereference vulnerability in GNU Gnutls
GnuTLS version 3.5.12 and earlier is vulnerable to a NULL pointer dereference while decoding a status response TLS extension with valid contents.
network
low complexity
gnu CWE-476
5.0
5.0
2017-04-14 CVE-2017-7869 Out-of-bounds Write vulnerability in GNU Gnutls
GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_read function in opencdk/read-packet.c.
network
low complexity
gnu CWE-787
5.0
5.0