{"id":"MGASA-2019-0134","summary":"Updated gnutls packages fix security vulnerability","details":"A vulnerability was found in gnutls versions from 3.5.8 before 3.6.7. A\nmemory corruption (double free) vulnerability in the certificate\nverification API. Any client or server application that verifies X.509\ncertificates with GnuTLS 3.5.8 or later is affected. (CVE-2019-3829)\n","modified":"2026-04-16T04:42:52.180921556Z","published":"2019-04-05T18:12:59Z","upstream":["CVE-2019-3829"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0134.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=24590"},{"type":"WEB","url":"https://www.gnutls.org/security-new.html"},{"type":"REPORT","url":"https://gitlab.com/gnutls/gnutls/issues/694"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/WRSOL66LHP4SD3Y2ECJDOGT4K663ECDU/"}],"affected":[{"package":{"name":"gnutls","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/gnutls?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.5.13-1.3.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0134.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}