Double Free Vulnerability in GnuTLS X.509 Extension Import Proxy Function

Double Free Vulnerability in GnuTLS X.509 Extension Import Proxy Function

CVE-2017-5334 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Double free vulnerability in the gnutls_x509_ext_import_proxy function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via crafted policy language information in an X.509 certificate with a Proxy Certificate Information extension.

Learn more about our Web Application Penetration Testing UK.