Lucene search
K

107 matches found

OSV
OSV
added 2026/05/18 10:6 a.m.9 views

SUSE-SU-2026:21752-1 Security update for gnutls

This update for gnutls fixes the following issues - CVE-2026-3832: cert-session: fix multi-entry OCSP revocation bypass bsc1263706. - CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. - CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short...

9.8CVSS5.8AI score0.01335EPSS
Exploits2References27
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.11 views

GnuTLS 安全漏洞

GnuTLS is an open-source, free security communication library developed by GnuTLS that enables the implementation of SSL, TLS, and DTLS protocols. There is a security vulnerability in gnutls, which stems from a logic issue with the reordering of Datagram Transport Layer Security packets. This...

7.5CVSS5.8AI score0.01335EPSS
Exploits0References1
OSV
OSV
added 2026/05/15 2:2 p.m.6 views

OESA-2026-2333 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

9.8CVSS6AI score0.01335EPSS
Exploits1References10
OSV
OSV
added 2026/05/08 11:15 a.m.14 views

CLSA-2026-1778238329 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake parsing integer underflow leading to OOB read...

9.1CVSS5.8AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2026/05/08 5:45 a.m.11 views

BIT-JRE-2023-21835

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable vulnerability allows...

5.3CVSS6.5AI score0.01836EPSS
Exploits0References4
OSV
OSV
added 2026/05/06 2:43 p.m.4 views

BIT-JAVA-MIN-2023-21835

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable vulnerability allows...

5.3CVSS6.8AI score0.01836EPSS
Exploits0References4
Snyk
Snyk
added 2026/05/04 10:26 a.m.6 views

Improper Handling of Length Parameter Inconsistency

Overview Affected versions of this package are vulnerable to Improper Handling of Length Parameter Inconsistency in the mergehandshakepacket process. An attacker can cause application crashes or memory corruption by sending crafted DTLS handshake fragments with inconsistent messagelength values,...

8.7CVSS6AI score0.01263EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/04 9:8 a.m.10 views

CVE-2026-33846 Gnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.12 views

CentOS 9 : gnutls-3.8.10-4.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the gnutls-3.8.10-4.el9 build changelog. - A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of nameConstraints labels,...

9.8CVSS7AI score0.01335EPSS
Exploits2References15
OSV
OSV
added 2026/04/09 10:16 p.m.4 views

UBUNTU-CVE-2026-5264

Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow...

9.8CVSS6.2AI score0.00446EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/09 9:43 p.m.21 views

CVE-2026-5264 DTLS 1.3 ACK heap buffer overflow

Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow...

8.3CVSS0.00446EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/09 9:43 p.m.2 views

CVE-2026-5264

Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow...

8.3CVSS6.4AI score0.00446EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 9:43 p.m.3 views

CVE-2026-5264 DTLS 1.3 ACK heap buffer overflow

Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow...

8.3CVSS6.2AI score0.00446EPSS
Exploits0References1
CVE
CVE
added 2026/04/09 9:43 p.m.46 views

CVE-2026-5264

CVE-2026-5264 describes a heap buffer overflow in DTLS 1.3 ACK message processing. The vulnerability can be triggered by a remote attacker that sends a crafted DTLS 1.3 ACK message, potentially enabling high-impact outcomes as reflected by the associated CVSS metrics (NVD: AV:N/AC:L/PR:N/UI:N/S:U...

9.8CVSS6.4AI score0.00446EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2026/04/09 9:43 p.m.9 views

CVE-2026-5264

Heap buffer overflow in DTLS 1.3 ACK message processing. A remote attacker can send a crafted DTLS 1.3 ACK message that triggers a heap buffer overflow...

9.8CVSS5.8AI score0.00446EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/09 9:2 p.m.23 views

CVE-2026-5446 wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse

In wolfSSL, ARIA-GCM cipher suites used in TLS 1.2 and DTLS 1.2 reuse an identical 12-byte GCM nonce for every application-data record. Because wcAriaEncrypt is stateless and passes the caller-supplied IV verbatim to the MagicCrypto SDK with no internal counter, and because the explicit IV is...

6CVSS0.00264EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.7 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the American company wolfSSL, aimed at developers working with embedded systems. There is a security vulnerability in wolfSSL, which stems from a heap buffer overflow issue in the processing of DTLS 1.3 ACK messages...

9.8CVSS6AI score0.00446EPSS
Exploits0References1
OSV
OSV
added 2026/03/31 11:5 p.m.7 views

MGASA-2026-0074 Updated python-openssl packages fix security vulnerabilities

pyOpenSSL allows TLS connection bypass via unhandled callback exception in settlsextservernamecallback. CVE-2026-27448 pyOpenSSL DTLS cookie callback buffer overflow. CVE-2026-27459...

9.8CVSS6.2AI score0.00704EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/02/12 9:13 a.m.7 views

CVE-2026-26014

A vulnerability has been identified in the Pion DTLS implementation where the use of random nonce generation with AES-GCM ciphers does not adhere to recommended cryptographic practices. Under certain conditions, this may allow remote attackers to more easily derive or reuse encryption...

5.9CVSS5.5AI score0.00619EPSS
Exploits0References7
OSV
OSV
added 2026/02/11 9:16 p.m.4 views

DEBIAN-CVE-2026-26014

Pion DTLS is a Go implementation of Datagram Transport Layer Security. Pion DTLS versions v1.0.0 through v3.0.10 and 3.1.0 use random nonce generation with AES GCM ciphers, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging the reuse of a nonc...

5.9CVSS5.5AI score0.00619EPSS
Exploits0References1
Rows per page
Query Builder