Gnutls · Gnutls · CVE-2024-0567
**Name of the Vulnerable Software and Affected Versions**
GnuTLS (affected versions not specified)
**Description**
A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. The flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack. The vulnerability is related to errors in cryptographic signature verification.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.