DescriptionGnuTLS version 3.5.12 and earlier is vulnerable to a NULL pointer dereference while decoding a status response TLS extension with valid contents. This could lead to a crash of the GnuTLS server application.
This issue is currently rated as having low severity.SUSE Bugzilla entry: 1043398 [NEW] No SUSE Security Announcements cross referenced.
List of planned updatesThe following information is the current evaluation information for this security issue. It might neither be accurate nor complete, Use at own risk.