CVE-2008-1948 - Vulnerability Details

The _gnutls_server_name_recv_params function in lib/ext_server_name.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hello message during extension handling, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a zero value for the length of Server Names, which leads to a buffer overflow in session resumption data in the pack_security_parameters function, aka GNUTLS-SA-2008-1-1.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Gnu	Gnutls
Redhat	Enterprise Linux

Configuration 1 [-]

OR	cpe:2.3:a:gnu:gnutls:1.0.18:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.19:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.20:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.21:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.22:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.23:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.24:::::::*
	cpe:2.3:a:gnu:gnutls:1.0.25:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.13:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.14:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.15:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.16:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.17:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.18:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.19:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.20:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.21:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.22:::::::*
	cpe:2.3:a:gnu:gnutls:1.1.23:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.6:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.7:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.8:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.9:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.10:::::::*
	cpe:2.3:a:gnu:gnutls:1.2.11:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.3.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.4.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.5.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.6.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.6.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.6.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.6.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.0:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.1:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.2:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.3:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.4:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.5:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.6:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.7:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.8:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.9:::::::*
	cpe:2.3:a:gnu:gnutls:1.7.10:::::::*
cpe:2.3:a:gnu:gnutls:1.7.11:::::::*
cpe:2.3:a:gnu:gnutls:1.7.12:::::::*
cpe:2.3:a:gnu:gnutls:1.7.13:::::::*
cpe:2.3:a:gnu:gnutls:1.7.14:::::::*
cpe:2.3:a:gnu:gnutls:1.7.15:::::::*
cpe:2.3:a:gnu:gnutls:1.7.16:::::::*
cpe:2.3:a:gnu:gnutls:1.7.17:::::::*
cpe:2.3:a:gnu:gnutls:1.7.18:::::::*
cpe:2.3:a:gnu:gnutls:1.7.19:::::::*
cpe:2.3:a:gnu:gnutls:2.0.0:::::::*
cpe:2.3:a:gnu:gnutls:2.0.1:::::::*
cpe:2.3:a:gnu:gnutls:2.0.2:::::::*
cpe:2.3:a:gnu:gnutls:2.0.3:::::::*
cpe:2.3:a:gnu:gnutls:2.0.4:::::::*
cpe:2.3:a:gnu:gnutls:2.1.0:::::::*
cpe:2.3:a:gnu:gnutls:2.1.1:::::::*
cpe:2.3:a:gnu:gnutls:2.1.2:::::::*
cpe:2.3:a:gnu:gnutls:2.1.3:::::::*
cpe:2.3:a:gnu:gnutls:2.1.4:::::::*
cpe:2.3:a:gnu:gnutls:2.1.5:::::::*
cpe:2.3:a:gnu:gnutls:2.1.6:::::::*
cpe:2.3:a:gnu:gnutls:2.1.7:::::::*
cpe:2.3:a:gnu:gnutls:2.1.8:::::::*
cpe:2.3:a:gnu:gnutls:2.2.0:::::::*
cpe:2.3:a:gnu:gnutls:2.2.1:::::::*
cpe:2.3:a:gnu:gnutls:2.2.2:::::::*
cpe:2.3:a:gnu:gnutls:2.2.3:::::::*
cpe:2.3:a:gnu:gnutls:2.2.4:::::::*
cpe:2.3:a:gnu:gnutls:2.2.5:::::::*
cpe:2.3:a:gnu:gnutls:2.3.0:::::::*
cpe:2.3:a:gnu:gnutls:2.3.1:::::::*
cpe:2.3:a:gnu:gnutls:2.3.2:::::::*
cpe:2.3:a:gnu:gnutls:2.3.3:::::::*
cpe:2.3:a:gnu:gnutls:2.3.4:::::::*
cpe:2.3:a:gnu:gnutls:2.3.5:::::::*
cpe:2.3:a:gnu:gnutls:2.3.6:::::::*
cpe:2.3:a:gnu:gnutls:2.3.7:::::::*
cpe:2.3:a:gnu:gnutls:2.3.8:::::::*
cpe:2.3:a:gnu:gnutls:2.3.9:::::::*
cpe:2.3:a:gnu:gnutls:2.3.10:::::::*
cpe:2.3:a:gnu:gnutls:2.3.11:::::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 4
gnutls-0:1.0.20-4.el4_6	cpe:/o:redhat:enterprise_linux:4	RHSA-2008:0492	2008-05-20T00:00:00Z
Red Hat Enterprise Linux 5
gnutls-0:1.4.1-3.el5_1	cpe:/o:redhat:enterprise_linux:5	RHSA-2008:0489	2008-05-20T00:00:00Z

References

Link	Providers
http://git.savannah.gnu.org/gitweb/?p=gnutls.git%3Ba=commitdiff%3Bh=bc8102405fda11ea00ca3b42acc4f4bce9d6e97b
http://lists.gnu.org/archive/html/gnutls-devel/2008-05/msg00051.html
http://lists.gnu.org/archive/html/gnutls-devel/2008-05/msg00055.html
http://lists.gnu.org/archive/html/gnutls-devel/2008-05/msg00060.html
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00003.html
http://secunia.com/advisories/30287
http://secunia.com/advisories/30302
http://secunia.com/advisories/30317
http://secunia.com/advisories/30324
http://secunia.com/advisories/30330
http://secunia.com/advisories/30331
http://secunia.com/advisories/30338
http://secunia.com/advisories/30355
http://secunia.com/advisories/31939
http://security.gentoo.org/glsa/glsa-200805-20.xml
http://securityreason.com/securityalert/3902
http://sourceforge.net/project/shownotes.php?release_id=600646&group_id=21558
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0174
http://www.cert.fi/haavoittuvuudet/advisory-gnutls.html
http://www.debian.org/security/2008/dsa-1581
http://www.kb.cert.org/vuls/id/111034
http://www.mandriva.com/security/advisories?name=MDVSA-2008:106
http://www.openwall.com/lists/oss-security/2008/05/20/1
http://www.openwall.com/lists/oss-security/2008/05/20/2
http://www.openwall.com/lists/oss-security/2008/05/20/3
http://www.redhat.com/support/errata/RHSA-2008-0489.html
http://www.redhat.com/support/errata/RHSA-2008-0492.html
http://www.securityfocus.com/archive/1/492282/100/0/threaded
http://www.securityfocus.com/archive/1/492464/100/0/threaded
http://www.securityfocus.com/bid/29292
http://www.securitytracker.com/id?1020057
http://www.ubuntu.com/usn/usn-613-1
http://www.vupen.com/english/advisories/2008/1582/references
http://www.vupen.com/english/advisories/2008/1583/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42532
https://issues.rpath.com/browse/RPL-2552
https://nvd.nist.gov/vuln/detail/CVE-2008-1948
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10935
https://www.cve.org/CVERecord?id=CVE-2008-1948
https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00487.html
https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00590.html
https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00615.html

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2008-05-21T10:00:00

Updated: 2024-08-07T08:41:00.219Z

Reserved: 2008-04-24T00:00:00

Link: CVE-2008-1948

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-05-21T13:24:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-1948

Redhat

Severity : Critical

Publid Date: 2008-05-19T00:00:00Z

Links: CVE-2008-1948 - Bugzilla

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object