14 matches found
Security update for gnutls
This update for gnutls fixes the following issues CVE-2026-33845: buffers: switch from endoffset over to fraglength bsc1263704. CVE-2026-33846: buffers: add more checks to DTLS reassembly bsc1263705. CVE-2026-42009: lib/buffers: ensure packets have differing sequence numbers bsc1263708. Patch...
Important: gnutls
Issue Overview: A remotely triggerable underflow in the DTLS reassembly code led to a heap overrun. The issue was reported in the issue tracker as 1811 by Joshua Rogers of AISLE Research Team. CVE-2026-33845 Affected Packages: gnutls Issue Correction: Run dnf update gnutls --releasever...
RHEL 8 : gnutls (RHSA-2026:20611)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20611 advisory. Please update the gnutls packages to provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and...
Photon OS 5.0: Gnutls PHSA-2026-5.0-0852
An update of the gnutls package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0852. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Debian dla-4595 : gnutls-bin - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4595 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4595-1 [email protected]...
CLSA-2026-1778774223 gnutls: Fix of CVE-2026-33845
CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...
CLSA-2026-1778762233 gnutls: Fix of CVE-2026-33845
CVE-2026-33845: fix integer underflow in DTLS handshake reassembly that allowed a remote heap overrun via crafted zero-length fragments...
OESA-2026-2221 gnutls security update
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...
CLSA-2026-1778240890 gnutls: Fix of CVE-2026-33845
CVE-2026-33845: fix DTLS handshake parsing integer underflow leading to OOB read...
CLSA-2026-1778239503 gnutls: Fix of CVE-2026-33845
CVE-2026-33845: fix DTLS handshake parsing integer underflow leading to OOB read...
CLSA-2026-1778238907 gnutls: Fix of CVE-2026-33845
CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...
CVE-2026-33845
A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service...
CVE-2026-33845
A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service...
Linux Distros Unpatched Vulnerability : CVE-2026-33845
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and...