Gnu

Gnutls

74 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Medienbericht
  • EPSS 1.34%
  • Veröffentlicht 18.05.2026 12:44:45
  • Zuletzt bearbeitet 08.07.2026 13:16:42

A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle...

Medienbericht
  • EPSS 1.05%
  • Veröffentlicht 07.05.2026 12:16:17
  • Zuletzt bearbeitet 08.07.2026 13:16:42

A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted...

Medienbericht
  • EPSS 0.81%
  • Veröffentlicht 30.04.2026 17:41:34
  • Zuletzt bearbeitet 07.07.2026 12:16:37

A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause inform...

Exploit
  • EPSS 0.72%
  • Veröffentlicht 30.04.2026 17:41:28
  • Zuletzt bearbeitet 24.06.2026 17:16:58

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP...

Exploit
  • EPSS 0.57%
  • Veröffentlicht 30.04.2026 17:37:05
  • Zuletzt bearbeitet 30.06.2026 03:19:14

A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constraints within `excludedSubtrees` or `permittedSubtrees...

Medienbericht
  • EPSS 1.38%
  • Veröffentlicht 09.04.2026 18:16:44
  • Zuletzt bearbeitet 30.06.2026 03:17:18

A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ClientHello message with an invalid Pre-Shared Key (PSK) binder value during the TLS handshake. This can lead to a NULL point...

  • EPSS 0.72%
  • Veröffentlicht 10.07.2025 09:41:46
  • Zuletzt bearbeitet 30.06.2026 01:16:26

A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds (OOB) NULL point...

  • EPSS 1.18%
  • Veröffentlicht 10.07.2025 08:05:26
  • Zuletzt bearbeitet 30.06.2026 01:16:26

A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extension during X.509 certificate parsing. This flaw allows a malicious user to create a certificate cont...

  • EPSS 1.19%
  • Veröffentlicht 10.07.2025 08:04:57
  • Zuletzt bearbeitet 30.06.2026 01:16:26

A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name (SAN) entries containing an otherName. If the type-id OID is invalid or malformed, GnuTLS wil...

Exploit
  • EPSS 1.41%
  • Veröffentlicht 16.01.2024 14:15:48
  • Zuletzt bearbeitet 21.11.2024 08:46:53

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, r...