« List of all CVEs

CVE-2016-4456

Published: 8/8/2017 Last updated: 8/6/2024 Reserved: 5/2/2016

The "GNUTLS_KEYLOGFILE" environment variable in gnutls 3.4.12 allows remote attackers to overwrite and corrupt arbitrary files in the filesystem.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (5)

conf-gnutls conf-mingw-w64-gnutls-i686 conf-mingw-w64-gnutls-x86_64 conf-srt conf-srt-gnutls

Products affected (1)

Product Vendor Version
n/a n/a 12.5(1)SU2

References (4)