CVE-2017-5337: gnutls: Heap read overflow in read-packet.c

Severity: Critical

CVSS Score: 9.8

Multiple heap-based buffer overflows in the read_attribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to have unspecified impact via a crafted OpenPGP certificate.