« List of all CVEs

CVE-2024-0567

Gnutls: rejects certificate chain with distributed trust

Published: 1/16/2024 Last updated: 11/20/2025 Reserved: 1/16/2024

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 7.5 High CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (5)

conf-gnutls conf-mingw-w64-gnutls-i686 conf-mingw-w64-gnutls-x86_64 conf-srt conf-srt-gnutls

Products affected (61)

Product Vendor Version
Red Hat Enterprise Linux 7 Red Hat < 10.0.17763.2803
Red Hat Enterprise Linux 8 Red Hat < 10.0.19043.1645
Red Hat Enterprise Linux 9 Red Hat < 10.0.19042.1645
Red Hat OpenShift Container Platform 3.11 Red Hat < 10.0.19042.1645
Red Hat Enterprise Linux 6 Red Hat < 10.0.17763.2803
Red Hat Enterprise Linux 9 Red Hat 17.6.4
Red Hat Enterprise Linux 9 Red Hat 17.6.1z1
Red Hat Enterprise Linux 9.2 Extended Update Support Red Hat 17.6.5
17.6.3a
Red Hat Enterprise Linux 8 Red Hat < 10.0.20348.643
Red Hat Enterprise Linux 7 Red Hat < 10.0.18363.2212
RHODF-4.15-RHEL-9 Red Hat <= 1.0.4
RHODF-4.15-RHEL-9 Red Hat 17.6.5a
RHODF-4.15-RHEL-9 Red Hat <= <= 1.2.15
RHODF-4.15-RHEL-9 Red Hat 17.7.1
RHODF-4.15-RHEL-9 Red Hat <= <= 2.2.4
RHODF-4.15-RHEL-9 Red Hat 17.7.1a
RHODF-4.15-RHEL-9 Red Hat <= <= 4.2
RHODF-4.15-RHEL-9 Red Hat 17.7.1b
RHODF-4.15-RHEL-9 Red Hat 17.7.2
RHODF-4.15-RHEL-9 Red Hat 17.10.1
RHODF-4.15-RHEL-9 Red Hat 17.10.1a
RHODF-4.15-RHEL-9 Red Hat 17.10.1b
RHODF-4.15-RHEL-9 Red Hat 17.8.1
RHODF-4.15-RHEL-9 Red Hat 17.8.1a
RHODF-4.15-RHEL-9 Red Hat 17.9.1
RHODF-4.15-RHEL-9 Red Hat 17.9.1w
RHODF-4.15-RHEL-9 Red Hat <= <= 1.3.5
RHODF-4.15-RHEL-9 Red Hat 17.9.2
RHODF-4.15-RHEL-9 Red Hat 17.9.1a
RHODF-4.15-RHEL-9 Red Hat 17.9.1x
RHODF-4.15-RHEL-9 Red Hat 17.9.3
RHODF-4.15-RHEL-9 Red Hat 17.9.2a
RHODF-4.15-RHEL-9 Red Hat 17.9.1x1
RHODF-4.15-RHEL-9 Red Hat 17.9.3a
RHODF-4.15-RHEL-9 Red Hat 17.11.1
RHODF-4.15-RHEL-9 Red Hat 17.11.1a
RHODF-4.15-RHEL-9 Red Hat 17.11.99SW
RHODF-4.15-RHEL-9 Red Hat <= <= 1.0.9
RHODF-4.15-RHEL-9 Red Hat 9.3.4 and earlier versions
RHODF-4.15-RHEL-9 Red Hat <= <= 1.7.7
RHODF-4.15-RHEL-9 Red Hat n/a
RHODF-4.15-RHEL-9 Red Hat <= <= 1.4.9
RHOL-5.8-RHEL-9 Red Hat <= 2.0.1.2
RHOL-5.8-RHEL-9 Red Hat <= < 4.1.14
RHOL-5.8-RHEL-9 Red Hat <= 1.4.1
RHOL-5.8-RHEL-9 Red Hat <= 2.2.0
RHOL-5.8-RHEL-9 Red Hat <= 2.3.3
RHOL-5.8-RHEL-9 Red Hat <= 1.9.11
RHOL-5.8-RHEL-9 Red Hat <= <= 1.0.3
RHOL-5.8-RHEL-9 Red Hat 16
RHOL-5.8-RHEL-9 Red Hat 15
RHOL-5.8-RHEL-9 Red Hat <= <= 1.15
RHOL-5.8-RHEL-9 Red Hat <= <= 51.1.36
RHOL-5.8-RHEL-9 Red Hat 14
RHOL-5.8-RHEL-9 Red Hat 13
RHOL-5.8-RHEL-9 Red Hat <= <= 1.5.7
RHOL-5.8-RHEL-9 Red Hat <= <= 3.0.3
RHOL-5.8-RHEL-9 Red Hat V2.002 and below
RHOL-5.8-RHEL-9 Red Hat < 10.0.17763.2803
RHOL-5.8-RHEL-9 Red Hat < 10.0.17763.2803

References (40)