Shashank Jain

**Name of the Vulnerable Software and Affected Versions** GnuTLS (affected versions not specified) **Description** The issue is related to a use after free problem in the client sending key share extension, which may lead to memory corruption and other consequences, potentially allowing a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GnuTLS (affected versions not specified) **Description** A flaw was found in the `client send params` function of the `lib/ext/pre shared key.c` component, related to a use after free issue. This may lead to memory corruption and other potential consequences, allowing a remote attacker to access confidential data, compromise its integrity, and cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.