gnutls: Crash upon receiving well-formed status_request extension (CVE-2017-7507) (#7416) · Issues · alpine / aports · GitLab

gnutls: Crash upon receiving well-formed status_request extension (CVE-2017-7507)

Fixed in:

gnutls 3.5.13

Reference:

https://www.gnutls.org/security.html\#GNUTLS-SA-2017-4

Patches:

https://gitlab.com/gnutls/gnutls/commit/4c4d35264fada08b6536425c051fb8e0b05ee86b
https://gitlab.com/gnutls/gnutls/commit/3efb6c5fd0e3822ec11879d5bcbea0e8d322cd03
https://gitlab.com/gnutls/gnutls/commit/e1d6c59a7b0392fb3b8b75035614084a53e2c8c9

(from redmine: issue id 7416, created on 2017-06-12, closed on 2017-06-14)

Relations:
- child #7417 (closed)
- child #7418 (closed)
- child #7419 (closed)
- child #7420 (closed)

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information