CVE-2004-2531

Name of the Vulnerable Software and Affected Versions GnuTLS version 1.0.16

Description The issue concerns X.509 Certificate Signature Verification in the GnuTLS library, allowing remote attackers to cause a denial of service by consuming CPU resources. This can be achieved through certificates that contain long chains and are signed with large RSA keys.

Recommendations For GnuTLS version 1.0.16, consider updating to a newer version that addresses this issue, as the current version allows for potential denial of service attacks through specifically crafted certificates. At the moment, there is no information about a newer version that contains a fix for this vulnerability.