Lucene search
K

10 matches found

RedHat Linux
RedHat Linux
added 2 days ago4 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 4 days ago5 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/16 4:53 p.m.18 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS5.8AI score0.01263EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/26 6:51 a.m.10 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References4
OSV
OSV
added 2026/05/15 2:2 p.m.8 views

OESA-2026-2335 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

9.8CVSS6AI score0.01335EPSS
Exploits1References10
CVE
CVE
added 2026/05/04 9:8 a.m.44 views

CVE-2026-33846

GnuTLS DTLS handshake fragment reassembly (merge_handshake_packet) fails to enforce consistent message_length across fragments, enabling a heap-based out-of-bounds write when fragments with conflicting lengths are received. This remote, unauthenticated vulnerability can cause application crashes ...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References16
Cvelist
Cvelist
added 2026/05/04 9:8 a.m.53 views

CVE-2026-33846 Gnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

7.5CVSS0.01263EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2026/04/30 12:0 a.m.7 views

PT-2026-36792

Name of the Vulnerable Software and Affected Versions GnuTLS affected versions not specified Description A heap buffer overflow exists in the DTLS handshake fragment reassembly logic. The issue occurs in the merge handshake packet function, where incoming handshake fragments are matched and merge...

9.8CVSS6.1AI score0.01263EPSS
Exploits2References126
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.13 views

PT-2026-5356

TrustTunnel is an open-source VPN protocol with a rule bypass issue in versions prior to 0.9.115. In tls listener.rs, TlsListener::listen peeks 1024 bytes and calls extract client random.... If parse tls plaintext fails for example, a fragmented/partial ClientHello split across TCP writes, extrac...

5.3CVSS5.9AI score0.00257EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.2 views

openssl: DTLS out-of-sequence message handling NULL deref DoS

The dtls1retrievebufferedfragment function in ssl/d1both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an out-of-sequence DTLS handshake message, related to a "fragment bug."...

5CVSS6.7AI score0.10254EPSS
Exploits1References4
Rows per page
Query Builder