CVE-2009-1415 - Vulnerability Details - OpenCVE

lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Gnu	Gnutls

Configuration 1 [-]

cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515
http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502
http://secunia.com/advisories/34842
http://secunia.com/advisories/35211
http://security.gentoo.org/glsa/glsa-200905-04.xml
http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488
http://www.mandriva.com/security/advisories?name=MDVSA-2009:116
http://www.securityfocus.com/bid/34783
http://www.securitytracker.com/id?1022157
http://www.vupen.com/english/advisories/2009/1218
https://exchange.xforce.ibmcloud.com/vulnerabilities/50257
https://exchange.xforce.ibmcloud.com/vulnerabilities/50260
https://exchange.xforce.ibmcloud.com/vulnerabilities/50445
https://nvd.nist.gov/vuln/detail/CVE-2009-1415
https://www.cve.org/CVERecord?id=CVE-2009-1415

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-04-30T20:00:00

Updated: 2024-08-07T05:13:25.486Z

Reserved: 2009-04-24T00:00:00

Link: CVE-2009-1415

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2009-04-30T20:30:00.563

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-1415

Redhat

Severity : Moderate

Publid Date: 2009-04-30T00:00:00Z

Links: CVE-2009-1415 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-04-30T00:00:00", "descriptions": [{"lang": "en", "value": "lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "gnutls-libgnutls-dos(50445)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50445"}, {"name": "[gnutls-devel] 20090423 Re: some crashes on using DSA keys", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502"}, {"name": "[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415]", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515"}, {"name": "gnutls-dsa-code-execution(50257)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50257"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488"}, {"name": "gnutls-dsa-dos(50260)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50260"}, {"name": "ADV-2009-1218", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/1218"}, {"name": "34783", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/34783"}, {"name": "GLSA-200905-04", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200905-04.xml"}, {"name": "1022157", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1022157"}, {"name": "34842", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/34842"}, {"name": "35211", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/35211"}, {"name": "MDVSA-2009:116", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:116"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-1415", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "gnutls-libgnutls-dos(50445)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50445"}, {"name": "[gnutls-devel] 20090423 Re: some crashes on using DSA keys", "refsource": "MLIST", "url": "http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502"}, {"name": "[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415]", "refsource": "MLIST", "url": "http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515"}, {"name": "gnutls-dsa-code-execution(50257)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50257"}, {"name": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488", "refsource": "CONFIRM", "url": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488"}, {"name": "gnutls-dsa-dos(50260)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50260"}, {"name": "ADV-2009-1218", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/1218"}, {"name": "34783", "refsource": "BID", "url": "http://www.securityfocus.com/bid/34783"}, {"name": "GLSA-200905-04", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200905-04.xml"}, {"name": "1022157", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1022157"}, {"name": "34842", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/34842"}, {"name": "35211", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/35211"}, {"name": "MDVSA-2009:116", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:116"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T05:13:25.486Z"}, "title": "CVE Program Container", "references": [{"name": "gnutls-libgnutls-dos(50445)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50445"}, {"name": "[gnutls-devel] 20090423 Re: some crashes on using DSA keys", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502"}, {"name": "[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415]", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515"}, {"name": "gnutls-dsa-code-execution(50257)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50257"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488"}, {"name": "gnutls-dsa-dos(50260)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50260"}, {"name": "ADV-2009-1218", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2009/1218"}, {"name": "34783", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/34783"}, {"name": "GLSA-200905-04", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-200905-04.xml"}, {"name": "1022157", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1022157"}, {"name": "34842", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/34842"}, {"name": "35211", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/35211"}, {"name": "MDVSA-2009:116", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:116"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-1415", "datePublished": "2009-04-30T20:00:00", "dateReserved": "2009-04-24T00:00:00", "dateUpdated": "2024-08-07T05:13:25.486Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:gnu:gnutls:*:*:*:*:*:*:*:*", "matchCriteriaId": "0CC336AC-F306-4643-91E0-BA1D4B07DC10", "versionEndExcluding": "2.6.6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "lib/pk-libgcrypt.c in libgnutls in GnuTLS before 2.6.6 does not properly handle invalid DSA signatures, which allows remote attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a malformed DSA key that triggers a (1) free of an uninitialized pointer or (2) double free."}, {"lang": "es", "value": "lib/pk-libgcrypt.c en libgnutls en GnuTLS anterior a v2.6.6 no maneja correctamente las firmas DSA, lo cual permite a atacantes remotos provocar una denegaci\u00f3n de servicio (cuelgue de aplicaci\u00f3n) y posiblemente tiene otro impacto no especificado a trav\u00e9s de una clave DSA malformada que desencadena (1) una liberaci\u00f3n del puntero no inicializado. (2) una doble liberaci\u00f3n."}], "id": "CVE-2009-1415", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-04-30T20:30:00.563", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "Patch"], "url": "http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Vendor Advisory"], "url": "http://secunia.com/advisories/34842"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://secunia.com/advisories/35211"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200905-04.xml"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Exploit"], "url": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:116"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/34783"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1022157"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.vupen.com/english/advisories/2009/1218"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50257"}, {"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50260"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50445"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Patch"], "url": "http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Vendor Advisory"], "url": "http://secunia.com/advisories/34842"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://secunia.com/advisories/35211"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200905-04.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Exploit"], "url": "http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3488"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:116"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/34783"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1022157"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.vupen.com/english/advisories/2009/1218"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50257"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Not Applicable"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50260"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50445"}], "sourceIdentifier": "cve@mitre.org", "vendorComments": [{"comment": "Not vulnerable. This issue did not affect versions of gnutls shipped in Red Hat Enterprise Linux 4 and 5 as it only affected gnutls 2.6.x versions.", "lastModified": "2009-09-21T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-824"}], "source": "nvd@nist.gov", "type": "Primary"}]}