CVE-2017-5335
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-5335
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-5335.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-5335
- Downstream
- Related
- Published
- 2017-03-24T15:59:00Z
- Modified
- 2025-10-24T03:55:59.293179Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a denial of service (out-of-memory error and crash) via a crafted OpenPGP certificate.
- References
-
- http://lists.opensuse.org/opensuse-security-announce/2017-02/msg00005.html
- http://rhn.redhat.com/errata/RHSA-2017-0574.html
- http://www.openwall.com/lists/oss-security/2017/01/10/7
- http://www.openwall.com/lists/oss-security/2017/01/11/4
- http://www.securityfocus.com/bid/95374
- http://www.securitytracker.com/id/1037576
- https://access.redhat.com/errata/RHSA-2017:2292
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=337
- https://gitlab.com/gnutls/gnutls/commit/49be4f7b82eba2363bb8d4090950dad976a77a3a
- https://gnutls.org/security.html#GNUTLS-SA-2017-2
- https://security.gentoo.org/glsa/201702-04
Affected packages
Git / gitlab.com/gnutls/gnutls
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.com/gnutls/gnutls
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
gnutls-0-0-7
gnutls-0-1-0-srp
gnutls-0_1_2
gnutls-3_0_12
gnutls0-0-4
gnutls0-0-5
gnutls0-0-6
gnutls_0_1_4
gnutls_0_1_9
gnutls_0_2_0
gnutls_0_2_1
gnutls_0_2_10
gnutls_0_2_11
gnutls_0_2_2
gnutls_0_2_3
gnutls_0_2_4
gnutls_0_2_9
gnutls_0_2_90
gnutls_0_2_91
gnutls_0_3_0
gnutls_0_3_1
gnutls_0_3_2
gnutls_0_3_90
gnutls_0_3_91
gnutls_0_3_92
gnutls_0_4_0
gnutls_0_4_1
gnutls_0_4_2
gnutls_0_4_3
gnutls_0_4_with_libtasn1
gnutls_0_5_0
gnutls_0_5_1
gnutls_0_5_10
gnutls_0_5_11
gnutls_0_5_4
gnutls_0_5_5
gnutls_0_5_6
gnutls_0_5_7
gnutls_0_5_8
gnutls_0_5_9
gnutls_0_5_x_before_export_ciphersuites
gnutls_0_5_x_before_int_fixes
gnutls_0_5_x_before_types_change
gnutls_0_5_x_with_export_ciphersuites
gnutls_0_6_0
gnutls_0_8_0
gnutls_0_8_1
gnutls_0_9_1
gnutls_0_9_2
gnutls_0_9_3
gnutls_0_9_4
gnutls_0_9_5
gnutls_0_9_6
gnutls_0_9_7
gnutls_0_9_8
gnutls_0_9_90
gnutls_0_9_91
gnutls_0_9_92
gnutls_0_9_93
gnutls_0_9_94
gnutls_0_9_95
gnutls_0_9_96
gnutls_0_9_97
gnutls_0_9_98
gnutls_0_9_99
gnutls_1_0_0
gnutls_1_0_20
gnutls_1_0_21
gnutls_1_0_22
gnutls_1_0_23
gnutls_1_0_24
gnutls_1_0_25
gnutls_1_1_0
gnutls_1_1_1
gnutls_1_1_10
gnutls_1_1_11
gnutls_1_1_12
gnutls_1_1_13
gnutls_1_1_14
gnutls_1_1_15
gnutls_1_1_16
gnutls_1_1_17
gnutls_1_1_18
gnutls_1_1_19
gnutls_1_1_2
gnutls_1_1_20
gnutls_1_1_21
gnutls_1_1_22
gnutls_1_1_23
gnutls_1_1_3
gnutls_1_1_4
gnutls_1_1_5
gnutls_1_1_6
gnutls_1_1_7
gnutls_1_1_7_pre0
gnutls_1_1_8
gnutls_1_1_9
gnutls_1_2_0
gnutls_1_2_1
gnutls_1_2_10
gnutls_1_2_11
gnutls_1_2_2
gnutls_1_2_3
gnutls_1_2_4
gnutls_1_2_5
gnutls_1_2_6
gnutls_1_2_7
gnutls_1_2_8
gnutls_1_2_9
gnutls_1_3_0
gnutls_1_3_1
gnutls_1_3_2
gnutls_1_3_3
gnutls_1_3_4
gnutls_1_3_5
gnutls_1_4_0
gnutls_1_4_1
gnutls_1_4_2
gnutls_1_5_0
gnutls_1_5_1
gnutls_1_5_2
gnutls_1_5_3
gnutls_1_5_4
gnutls_1_5_5
gnutls_1_6_0
gnutls_1_6_1
gnutls_1_7_0
gnutls_1_7_1
gnutls_1_7_10
gnutls_1_7_11
gnutls_1_7_12
gnutls_1_7_13
gnutls_1_7_14
gnutls_1_7_15
gnutls_1_7_16
gnutls_1_7_17
gnutls_1_7_18
gnutls_1_7_19
gnutls_1_7_2
gnutls_1_7_3
gnutls_1_7_4
gnutls_1_7_5
gnutls_1_7_6
gnutls_1_7_7
gnutls_1_7_8
gnutls_1_7_9
gnutls_2_0_0
gnutls_2_0_1
gnutls_2_11_3
gnutls_2_11_4
gnutls_2_11_5
gnutls_2_11_6
gnutls_2_1_0
gnutls_2_1_1
gnutls_2_1_2
gnutls_2_1_3
gnutls_2_1_4
gnutls_2_1_5
gnutls_2_1_6
gnutls_2_1_7
gnutls_2_1_8
gnutls_2_3_0
gnutls_2_3_1
gnutls_2_3_10
gnutls_2_3_11
gnutls_2_3_12
gnutls_2_3_13
gnutls_2_3_14
gnutls_2_3_15
gnutls_2_3_2
gnutls_2_3_3
gnutls_2_3_4
gnutls_2_3_4_netconf_0
gnutls_2_3_4_netconf_1
gnutls_2_3_4_netconf_2
gnutls_2_3_5
gnutls_2_3_6
gnutls_2_3_7
gnutls_2_3_8
gnutls_2_3_9
gnutls_2_4_0
gnutls_2_5_0
gnutls_2_5_1
gnutls_2_5_2
gnutls_2_5_3
gnutls_2_5_4
gnutls_2_5_5
gnutls_2_5_6
gnutls_2_5_7
gnutls_2_5_8
gnutls_2_5_9
gnutls_2_7_0
gnutls_2_7_1
gnutls_2_7_10
gnutls_2_7_11
gnutls_2_7_12
gnutls_2_7_13
gnutls_2_7_14
gnutls_2_7_2
gnutls_2_7_3
gnutls_2_7_4
gnutls_2_7_5
gnutls_2_7_6
gnutls_2_7_7
gnutls_2_7_8
gnutls_2_7_9
gnutls_2_8_0
gnutls_2_99_0
gnutls_2_99_1
gnutls_2_99_2
gnutls_2_99_3
gnutls_2_99_4
gnutls_2_9_0
gnutls_2_9_1
gnutls_2_9_10
gnutls_2_9_2
gnutls_2_9_3
gnutls_2_9_4
gnutls_2_9_5
gnutls_2_9_6
gnutls_2_9_7
gnutls_2_9_8
gnutls_2_9_9
gnutls_3_0_0
gnutls_3_0_10
gnutls_3_0_11
gnutls_3_0_13
gnutls_3_0_14
gnutls_3_0_15
gnutls_3_0_16
gnutls_3_0_17
gnutls_3_0_18
gnutls_3_0_2
gnutls_3_0_21
gnutls_3_0_3
gnutls_3_0_4
gnutls_3_0_5
gnutls_3_0_6
gnutls_3_0_7
gnutls_3_0_8
gnutls_3_0_9
gnutls_3_1_0
gnutls_3_1_0pre0
gnutls_3_1_2
gnutls_3_1_3
gnutls_3_1_4
gnutls_3_1_5
gnutls_3_1_6
gnutls_3_1_7
gnutls_3_1_8
gnutls_3_1_9
gnutls_3_2_0
gnutls_3_2_2
gnutls_3_2_3
gnutls_3_2_3pre0
gnutls_3_2_4
gnutls_3_2_5
gnutls_3_2_6
gnutls_3_3_0
gnutls_3_3_1
gnutls_3_3_2
gnutls_3_3_3
gnutls_3_3_4
gnutls_3_3_5
gnutls_3_3_6
gnutls_3_4_0
gnutls_3_4_1
gnutls_3_4_2
gnutls_3_4_3
gnutls_3_5_0
gnutls_3_5_1
gnutls_3_5_2
gnutls_3_5_3
gnutls_3_5_4
gnutls_3_5_5
gnutls_3_5_7
Database specific
vanir_signatures
[
{
"signature_version": "v1",
"target": {
"function": "read_subpkt",
"file": "lib/opencdk/read-packet.c"
},
"source": "https://gitlab.com/gnutls/gnutls@49be4f7b82eba2363bb8d4090950dad976a77a3a",
"digest": {
"length": 1005.0,
"function_hash": "173370186425216051856576524554546769698"
},
"deprecated": false,
"id": "CVE-2017-5335-2248b091",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"function": "read_16",
"file": "lib/opencdk/read-packet.c"
},
"source": "https://gitlab.com/gnutls/gnutls@49be4f7b82eba2363bb8d4090950dad976a77a3a",
"digest": {
"length": 214.0,
"function_hash": "202652325685208525720256842055047074462"
},
"deprecated": false,
"id": "CVE-2017-5335-75ee34a5",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"file": "lib/opencdk/read-packet.c"
},
"source": "https://gitlab.com/gnutls/gnutls@49be4f7b82eba2363bb8d4090950dad976a77a3a",
"digest": {
"line_hashes": [
"97025789484589273028894834201887238500",
"21693505129573805742854257816871585459",
"289288783026468716449259969206354292453",
"71131254618710673026940145563583970706",
"335167304477489244653143105540771569505",
"139273541441737161444557659972680030034",
"54001353640190001688285935095997380432",
"37831614239002453827761358793735238768",
"70280102920963488289550209725004181472",
"29353714144875812649955064968999048589",
"330928655278963280845309208934048483155",
"234200606342340056357344579981022106140",
"88991884459370799978715297445463612771",
"315900219204896802563834027408531735966",
"260487507412846457305330158444846002172",
"78652860453482259365055539434260332121",
"12781057437183825771474524764321133049",
"51189185514732702383358211503176736066",
"252861100218057166961844461554346012476",
"32882006438626824853562627735153585720",
"144590460383025779876227611329138204537",
"292890858381119607877015641138785285286",
"190146771974851191314663003777114231164",
"333737614585693777505867122133818505300",
"251395218298952988815333995076389696824",
"232217484494522735275836954580579051946",
"183730216342456955957252249911643293624",
"197950859200607756754195227942101557568",
"324620924509132672313323080294213889287",
"248711710365418597415593709573581782632",
"203955449696949260569769205303671090037",
"60084880074366323421702487170269061040",
"214521059503675761813277827086669541176",
"129162968225260504557127682055298330885",
"246461238475287298428386084244059041333",
"134212755190438324492435711432331762943",
"134441828837176452791790774583127821340",
"112588776070044777866528614668008963229",
"93994620107930541748327758256583977546",
"336566504986281725663541156896448665223",
"264245910213012526646264279243491515450",
"262966771345243676497055106436463828972",
"304094868594259019943049805343803441368",
"313278607808056234900725587414523142643",
"96726374793194596349117252107000881935",
"7627788071160236123623179400347376211",
"6862839196194606111852102304959252358",
"197714853656542969783569664499561728752",
"92333152977770427196877394612005678280",
"244450315429900482272533750285511171833",
"191072580524901457327489274907454714027",
"88708394484863516659399041067283238849",
"317406092041611844163186418749943714769",
"145710651427002373749123037253168117576",
"131303170853215999635428308310807838583",
"202241744204862457686956154615242951492"
],
"threshold": 0.9
},
"deprecated": false,
"id": "CVE-2017-5335-80661cfe",
"signature_type": "Line"
},
{
"signature_version": "v1",
"target": {
"function": "read_32",
"file": "lib/opencdk/read-packet.c"
},
"source": "https://gitlab.com/gnutls/gnutls@49be4f7b82eba2363bb8d4090950dad976a77a3a",
"digest": {
"length": 250.0,
"function_hash": "91754981059721123510329547530566409628"
},
"deprecated": false,
"id": "CVE-2017-5335-975e0492",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"function": "read_old_length",
"file": "lib/opencdk/read-packet.c"
},
"source": "https://gitlab.com/gnutls/gnutls@49be4f7b82eba2363bb8d4090950dad976a77a3a",
"digest": {
"length": 369.0,
"function_hash": "248442577140971374149110516301351556856"
},
"deprecated": false,
"id": "CVE-2017-5335-d3e8f061",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"function": "read_new_length",
"file": "lib/opencdk/read-packet.c"
},
"source": "https://gitlab.com/gnutls/gnutls@49be4f7b82eba2363bb8d4090950dad976a77a3a",
"digest": {
"length": 448.0,
"function_hash": "306645502198445566193425303517908092766"
},
"deprecated": false,
"id": "CVE-2017-5335-dd5e2aa6",
"signature_type": "Function"
}
]