ALPINE-CVE-2025-9820

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

CVE-2025-9820

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

UBUNTU-CVE-2025-9820

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

CVE-2025-9820 Gnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

CVE-2025-9820

CVE-2025-9820 affects the GnuTLS library, specifically gnutls_pkcs11_token_init(), where processing an overly long token label can cause a stack-based buffer overflow. Publicly documented impact includes potential crash or local code execution with resulting denial of service or privilege escalat...

CVE-2025-9820 Gnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

CVE-2025-9820

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

EUVD-2025-206344

A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the applicatio...

Advisory ROSA-SA-2026-3128

software: gnutls 3.8.10 OS: ROSA-CHROME unaffected versions = gnutls-3.8.10-1 affected versions gnutls-3.8.10-1 CVE-ID: CVE-2025-32988 BDU-ID: 2025-11076 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the asn1deletestructure function of the GnuTLS transport layer security library involves a memory...

GnuTLS security vulnerabilities

GnuTLS is an open-source, free security communication library developed by GnuTLS that enables the implementation of SSL, TLS, and DTLS protocols. GnuTLS has a security vulnerability, which stems from a stack buffer overflow in the gnutlspkcs11tokeninit function. This vulnerability may lead to...

Unity Linux 20.1070e Security Update: gnutls (UTSA-2026-004960)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004960 advisory. A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate...

[SECURITY] Fedora 42 Update: mingw-libtasn1-4.21.0-1.fc42

libtasn1 is the ASN.1 library used in GNUTLS. This package contains the MinGW Windows cross compiled libtasn1 library...

[SECURITY] Fedora 43 Update: mingw-libtasn1-4.21.0-1.fc43

libtasn1 is the ASN.1 library used in GNUTLS. This package contains the MinGW Windows cross compiled libtasn1 library...

Azure Linux 3.0 Security Update: gnutls (CVE-2024-28834)

The version of gnutls installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28834 advisory. - A flaw was found in GnuTLS. The Minerva attack is a cryptographic vulnerability that exploits deterministic...

Azure Linux 3.0 Security Update: gnutls (CVE-2024-28835)

The version of gnutls installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28835 advisory. - A flaw has been discovered in GnuTLS where an application crash can be induced when attempting to verify a...

MiracleLinux 8 : gnutls-3.6.16-6.el8 (AXSA:2023-5270:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5270:02 advisory. gnutls: timing side-channel in the TLS RSA key exchange code CVE-2023-0361 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 8 : gnutls-3.6.14-7.0.1.el8 (AXSA:2021-1156:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1156:01 advisory. gnutls: Heap buffer overflow in handshake with norenegotiation alert sent CVE-2020-24659 Tenable has extracted the preceding description block directly from...

MiracleLinux 8 : gnutls-3.6.16-8.el8_9.ML.1 (AXSA:2024-7402:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7402:01 advisory. gnutls: timing side-channel in the RSA-PSK authentication CVE-2023-5981 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : gnutls-3.7.6-12.el9, nettle-3.8-3.el9 (AXSA:2022-4094:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4094:01 advisory. gnutls: Double free during gnutlspkcs7verify. CVE-2022-2509 Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 9 : gnutls-3.7.6-18.el9 (AXSA:2023-5214:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5214:01 advisory. gnutls: timing side-channel in the TLS RSA key exchange code CVE-2023-0361 Tenable has extracted the preceding description block directly from the MiracleLin...