製品・ソフトウェアに関する情報

JVN脆弱性詳細

GnuTLS の gnutls_session_get_data 関数におけるバッファオーバーフローの脆弱性

Title	GnuTLS の gnutls_session_get_data 関数におけるバッファオーバーフローの脆弱性
Summary	GnuTLS の lib/gnutls_session.c 内にある gnutls_session_get_data 関数には、規定外のセッション再開を実行するクライアントにおいて利用される場合に、バッファオーバーフローの脆弱性が存在します。
Possible impacts	大きな SessionTicket を介して、TLS サーバをサービス運用妨害 (アプリケーションクラッシュ) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Nov. 8, 2011, midnight
Registration Date	Dec. 13, 2011, 2:47 p.m.
Last Update	Dec. 17, 2012, 6:07 p.m.

CVSS2.0 : 警告
Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:N/A:P

Affected System

GNU Project

GnuTLS 2.12.14 未満の 2.12.x

GnuTLS 3.0.7 未満の 3.x

VMware

VMware ESX 3.5

VMware ESX 4.0

VMware ESX 4.1

VMware ESXi

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2011-4128	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4128
National Vulnerability Database (NVD)
2	CVE-2011-4128	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4128
SECURITY BLOG
3	CVE-2011-4128 Buffer Overflow vulnerability in gnutls	https://blogs.oracle.com/sunsecurity/entry/cve_2011_4128_buffer_overflow

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-119	https://jvndb.jvn.jp/ja/cwe/CWE-119.html

ベンダー情報

No	Name	URL
Gmane
1	Possible buffer overflow on gnutls_session_get_data	http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596
GnuTLS
2	Advisories	http://www.gnu.org/software/gnutls/security.html
3	bug fix in gnutls_session_get_data().	http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=e82ef4545e9e98cbcb032f55d7c750b81e3a0450
4	gnutls_session_get_data: fix possible buffer overflow	http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=190cef6eed37d0e73a73c1e205eb31d45ab60a3c
VMware Security Advisories
5	VMSA-2012-0013	http://www.vmware.com/jp/support/support-resources/advisories/VMSA-2012-0013.html

Change Log

No	Changed Details	Date of change
0	[2011年12月13日] 掲載 [2012年10月23日] ベンダ情報：オラクル (CVE-2011-4128 Buffer Overflow vulnerability in gnutls) を追加 [2012年12月17日] 影響を受けるシステム：VMware (VMSA-2012-0013) の情報を追加ベンダ情報：VMware (VMSA-2012-0013) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2011-4128

Summary	Buffer overflow in the gnutls_session_get_data function in lib/gnutls_session.c in GnuTLS 2.12.x before 2.12.14 and 3.x before 3.0.7, when used on a client that performs nonstandard session resumption, allows remote TLS servers to cause a denial of service (application crash) via a large SessionTicket.
Publication Date	Dec. 9, 2011, 5:55 a.m.
Registration Date	Jan. 28, 2021, 4:39 p.m.
Last Update	Nov. 21, 2024, 10:31 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:gnu:gnutls:2.12.2:::::::*
cpe:2.3:a:gnu:gnutls:2.12.7:::::::*
cpe:2.3:a:gnu:gnutls:2.12.5:::::::*
cpe:2.3:a:gnu:gnutls:2.12.8:::::::*
cpe:2.3:a:gnu:gnutls:2.12.6.1:::::::*
cpe:2.3:a:gnu:gnutls:2.12.0:::::::*
cpe:2.3:a:gnu:gnutls:2.12.10:::::::*
cpe:2.3:a:gnu:gnutls:2.12.6:::::::*
cpe:2.3:a:gnu:gnutls:2.12.9:::::::*
cpe:2.3:a:gnu:gnutls:2.12.13:::::::*
cpe:2.3:a:gnu:gnutls:2.12.12:::::::*
cpe:2.3:a:gnu:gnutls:2.12.3:::::::*
cpe:2.3:a:gnu:gnutls:2.12.4:::::::*
cpe:2.3:a:gnu:gnutls:2.12.11:::::::*
cpe:2.3:a:gnu:gnutls:2.12.1:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:gnu:gnutls:3.0.3:::::::*
cpe:2.3:a:gnu:gnutls:3.0.6:::::::*
cpe:2.3:a:gnu:gnutls:3.0.0:::::::*
cpe:2.3:a:gnu:gnutls:3.0.2:::::::*
cpe:2.3:a:gnu:gnutls:3.0.5:::::::*
cpe:2.3:a:gnu:gnutls:3.0.1:::::::*
cpe:2.3:a:gnu:gnutls:3.0.4:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596
2	http://git.savannah.gnu.org/gitweb/?p=gnutls.git%3Ba=commitdiff%3Bh=190cef6eed37d0e73a73c1e205eb31d45ab60a3c
3	http://git.savannah.gnu.org/gitweb/?p=gnutls.git%3Ba=commitdiff%3Bh=e82ef4545e9e98cbcb032f55d7c750b81e3a0450
4	http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077071.html
5	http://openwall.com/lists/oss-security/2011/11/09/2
6	http://openwall.com/lists/oss-security/2011/11/09/4
7	http://rhn.redhat.com/errata/RHSA-2012-0429.html
8	http://rhn.redhat.com/errata/RHSA-2012-0488.html
9	http://rhn.redhat.com/errata/RHSA-2012-0531.html
10	http://secunia.com/advisories/48596
11	http://secunia.com/advisories/48712
12	http://www.gnu.org/software/gnutls/security.html
13	http://www.mandriva.com/security/advisories?name=MDVSA-2012:045
14	http://www.ubuntu.com/usn/USN-1418-1
15	https://bugzilla.redhat.com/show_bug.cgi?id=752308
16	http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596
17	https://bugzilla.redhat.com/show_bug.cgi?id=752308
18	http://www.ubuntu.com/usn/USN-1418-1
19	http://www.mandriva.com/security/advisories?name=MDVSA-2012:045
20	http://www.gnu.org/software/gnutls/security.html
21	http://secunia.com/advisories/48712
22	http://secunia.com/advisories/48596
23	http://rhn.redhat.com/errata/RHSA-2012-0531.html
24	http://rhn.redhat.com/errata/RHSA-2012-0488.html
25	http://rhn.redhat.com/errata/RHSA-2012-0429.html
26	http://openwall.com/lists/oss-security/2011/11/09/4
27	http://openwall.com/lists/oss-security/2011/11/09/2
28	http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077071.html
29	http://git.savannah.gnu.org/gitweb/?p=gnutls.git%3Ba=commitdiff%3Bh=e82ef4545e9e98cbcb032f55d7c750b81e3a0450
30	http://git.savannah.gnu.org/gitweb/?p=gnutls.git%3Ba=commitdiff%3Bh=190cef6eed37d0e73a73c1e205eb31d45ab60a3c

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:gnu:gnutls:2.12.2:::::::*
cpe:2.3:a:gnu:gnutls:2.12.7:::::::*
cpe:2.3:a:gnu:gnutls:2.12.5:::::::*
cpe:2.3:a:gnu:gnutls:2.12.8:::::::*
cpe:2.3:a:gnu:gnutls:2.12.6.1:::::::*
cpe:2.3:a:gnu:gnutls:2.12.0:::::::*
cpe:2.3:a:gnu:gnutls:2.12.10:::::::*
cpe:2.3:a:gnu:gnutls:2.12.6:::::::*
cpe:2.3:a:gnu:gnutls:2.12.9:::::::*
cpe:2.3:a:gnu:gnutls:2.12.13:::::::*
cpe:2.3:a:gnu:gnutls:2.12.12:::::::*
cpe:2.3:a:gnu:gnutls:2.12.3:::::::*
cpe:2.3:a:gnu:gnutls:2.12.4:::::::*
cpe:2.3:a:gnu:gnutls:2.12.11:::::::*
cpe:2.3:a:gnu:gnutls:2.12.1:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:gnu:gnutls:3.0.3:::::::*
cpe:2.3:a:gnu:gnutls:3.0.6:::::::*
cpe:2.3:a:gnu:gnutls:3.0.0:::::::*
cpe:2.3:a:gnu:gnutls:3.0.2:::::::*
cpe:2.3:a:gnu:gnutls:3.0.5:::::::*
cpe:2.3:a:gnu:gnutls:3.0.1:::::::*
cpe:2.3:a:gnu:gnutls:3.0.4:::::::*