CVE-2009-3555

CVE-2009-3555 concerns a TLS/SSL renegotiation flaw where renegotiation handshakes were not properly associated with the existing connection, enabling MITM data insertion in HTTPS and other TLS/SSL sessions (Project Mogul). Connected advisories show concrete mitigations and affected software: Pou...

CVE-2021-20231

The CVE-2021-20231 issue affects the GnuTLS library (gnutls) in the client handling of the TLS 1.3 key_share extension. The root cause is a use-after-free vulnerability that can result from dereferencing a pointer after realloc in the client path handling key_share, leading to memory corruption. ...

CVE-2021-20232

A vulnerability in GnuTLS (CVE-2021-20232) stems from a use-after-free in client_send_params (lib/ext/pre_shared_key.c), which may cause memory corruption and other consequences. The issue is within the GnuTLS library, affecting TLS 1.3 client handling of pre_shared_key extensions. Documented imp...

CVE-2023-0361

CVE-2023-0361 describes a timing side-channel in GnuTLS during RSA ClientKeyExchange handling that can enable Bleichenbacher-style attacks to recover the RSA key and decrypt accompanying application data. The vulnerability affects GnuTLS implementations across multiple advisories and distribution...

CVE-2024-0553

CVE-2024-0553 affects GnuTLS and describes a timing side‑channel in RSA-PSK ClientKeyExchange that could leak data. Multiple connected advisories confirm affected package versions and provide fixes: Debian/Red Hat‑based mariners list upgrades to mitigate (examples include gnutls >= 3.7.11-1 or...

CVE-2023-5981

CVE-2023-5981 affects GnuTLS via timing side-channel in RSA-PSK ClientKeyExchange, potentially leaking data. Connected docs show affected gnutls versions before 3.7.11-1 (CBLMARINER: CVE-2023-5981 affecting package gnutls for versions less than 3.7.11-1) and note CVE-2024-0553 as an incomplete re...

CVE-2022-2509

CVE-2022-2509 is a vulnerability in the GnuTLS library (gnutls) caused by a double free during verification of PKCS7 signatures in gnutls_pkcs7_verify. Connected documents show affected packages across several ecosystems (e.g., Debian gnutls28, AlmaLinux gnutls, Cloud Foundry USN). The root cause...

CVE-2020-13777

GnuTLS 3.6.x before 3.6.14 is affected by a flaw in how the TLS session-ticket encryption key is constructed, caused by an 2018-09-18 commit. The earliest affected version is 3.6.4 . Until the first key rotation, the TLS server uses incorrect data in place of a key derived from the application, l...

CVE-2020-24659

GnuTLS up to version 3.6.14 is affected by CVE-2020-24659. The issue is described as a heap buffer overflow during TLS handshake involving a no_renegotiation alert and an invalid second handshake, with the crash occurring in the error handling path when gnutls_deinit is called after a handshake f...

CVE-2020-11501

CVE-2020-11501 affects GnuTLS 3.6.x prior to 3.6.13. The DTLS client uses 32 null bytes instead of random values during DTLS negotiations, removing randomness and breaking DTLS security guarantees. Affected range starts at 3.6.3 (2018-07-16) due to a 2017-10-06 commit. The issue was fixed in 3.6....

CVE-2018-16868

CVE-2018-16868 concerns a Bleichenbacher-type side-channel padding oracle in GnuTLS during PKCS#1 v1.5 RSA verification. The provided documents indicate this affects GnuTLS across Linux distributions (e.g., Red Hat). The attack requires local access on the same physical core as the victim process...

CVE-2024-0567

CVE-2024-0567 – GnuTLS issue affects the certificate chain validation when using cockpit-certificate-ensure, causing a denial-of-service that can be triggered by an unauthenticated remote attacker. Documents refer to GnuTLS in cockpit and describe distributed-trust chain rejection as the root cau...

CVE-2019-3829

CVE-2019-3829 affects GnuTLS versions prior to 3.6.7 (including 3.5.8+). The issue is a memory corruption (double free) in the certificate verification API (e.g., verify_crt and gnutls_x509_trust_list_verify_crt). This can enable arbitrary code execution or crash scenarios when a client or server...

CVE-2018-10844

CVE-2018-10844 affects GnuTLS HMAC-SHA-256 and is described in multiple sources (IBM advisories and third‑party feeds) as a Lucky Thirteen–style timing attack enabling distinguishing and plaintext‑recovery via crafted packets. Affected products include IBM Power Hardware Management Console and IB...

CVE-2012-1569

CVE-2012-1569 involves the libtasn1 ASN.1 DER library. The issue is a flaw in asn1_get_length_der handling large length values, present in libtasn1 before 2.12 and used by GnuTLS before 3.0.16. A crafted DER structure can trigger heap memory corruption, leading to a remote denial of service (appl...

CVE-2018-10845

CVE-2018-10845 affects GnuTLS HMAC-SHA-384 and enables a Lucky Thirteen–style timing side-channel leading to potential plaintext recovery. The connected IBM advisories confirm remote exploitation via crafted packets to obtain information, with MEDIUM base scores and impact on confidentiality. Rem...

CVE-2019-3836

GNUTLS CVE-2019-3836: uninitialized/invalid pointer access in post-handshake message handling (TLS1.3 async messages) on versions prior to 3.6.7. Remote attacker can cause crash/Denial of Service; may enable arbitrary code execution per related advisories. Remediation: upgrade to GNUTLS 3.6.7 or ...

CVE-2021-4209

CVE-2021-4209 is a NULL pointer dereference in the GnuTLS library that can cause denial of service after authentication when zero-length input triggers undefined behavior in Nettle hash update paths. The vulnerability is applicable to GnuTLS and has been addressed in vendor advisories and Debian ...

CVE-2018-10846

CVE-2018-10846 describes a cache-based side-channel in GnuTLS that can enable plaintext recovery in cross-VM settings. An attacker could combine a Just in Time Prime+probe attack with a Lucky-13 attack by sending crafted packets to exploit this vulnerability. Remediation in publicly documented ad...

CVE-2017-7507

CVE-2017-7507 affects GnuTLS 3.5.12 and earlier, which are vulnerable to a NULL pointer dereference when decoding a status_request extension in ClientHello, potentially crashing the server. Several connected advisories confirm the issue and provide remediation: upgrade to GnuTLS 3.5.13 or newer (...

CVE-2013-2116

CVE-2013-2116 affects GnuTLS 2.12.23 where the function gnutls_ciphertext2compressed in lib/gnutls_cipher.c can trigger a buffer over-read and crash under a crafted padding length, causing a denial of service. NOTE: this entry is linked to previous CVE-2013-0169 fixes; ALT Linux advisories indica...

CVE-2009-2409

CVE-2009-2409 involves MD2 use in X.509 certificate signatures across NSS, GnuTLS, and OpenSSL. Root cause: MD2 hash weaknesses allow forging/collision-based certificate spoofing; public updates disable/avoid MD2 and patch implementations. Affected components include NSS library (Firefox usage), ...

CVE-2014-0092

GnuTLS CVE-2014-0092 affects lib/x509/verify.c: vulnerable in GnuTLS releases before 3.1.22 and before 3.2.12 (3.2.x). The flaw arises from improper handling of unspecified errors during X.509 certificate verification from SSL servers, enabling MITM via a crafted certificate. Public references co...

CVE-2015-0294

The CVE-2015-0294 entry concerns GnuTLS before 3.3.13, where the library does not validate that the signature algorithms match when importing a certificate. The vulnerability is documented in multiple connected sources (e.g., MiracleLinux AXSA advisory referencing CVE-2015-0294 and vendor advisor...

CVE-2014-3466

CVE-2014-3466: A buffer overflow in GnuTLS reads the ServerHello session ID, enabling memory corruption and potential code execution. Affected: GnuTLS in various 3.1.x/3.2.x/3.3.x lines (before 3.1.25, 3.2.15, 3.3.4). Impact: denial of service or possible remote code execution via a crafted Serve...

CVE-2013-4466

GnuTLS has a DANE (libdane) heap/buffer overflow in dane_query_tlsa that can cause memory corruption on receipt of a DNS response with more than four DANE entries. Affected branches: GnuTLS 3.1.x prior to 3.1.15 and 3.2.x prior to 3.2.5. Publicly described impact is denial of service via memory i...

CVE-2017-5336

CVE-2017-5336 : GnuTLS contains a stack-based buffer overflow in the cdk_pk_get_keyid function (lib/opencdk/pubkey.c), exploitable via crafted OpenPGP certificates. Affected versions are GnuTLS before 3.3.26 and 3.5.x before 3.5.8. Remediation: upgrade to a fixed release (upstream 3.3.26 or later...

CVE-2013-1619

CVE-2013-1619 affects the TLS implementation in GnuTLS prior to 2.12.23, 3.0.x prior to 3.0.28, and 3.1.x prior to 3.1.7. The vulnerability arises from improper consideration of timing side-channel attacks on a noncompliant CBC padding check during processing of malformed CBC padding, enabling re...

CVE-2017-5337

CVE-2017-5337 is a GnuTLS vulnerability involving multiple heap-based buffer overflows in read_attribute triggered by crafted OpenPGP certificates. Affected versions are GnuTLS builds before 3.3.26 and 3.5.x before 3.5.8. The connected materials confirm the root cause as heap overflows in read_at...

CVE-2016-7444

CVE-2016-7444 affects GnuTLS: the function gnutls_ocsp_resp_check_crt in lib/x509/ocsp.c fails to verify the serial length of OCSP responses, due to trailing bytes from gnutls_malloc. This can allow remote attackers to bypass certificate validation. Affected versions are GnuTLS before 3.4.15 and ...

CVE-2014-3467

GNUTLS/library libtasn1 vulnerability CVE-2014-3467 is due to multiple issues in the DER decoder of GNU Libtasn1 up to version 3.5.x (pre-3.6), exploited by crafted ASN.1 data to cause a denial of service via out-of-bounds read. The issue is confirmed in multiple advisories (F5 SOL15423, ALAS-201...

CVE-2017-5334

CVE-2017-5334: Double-free vulnerability in GnuTLS in gnutls_x509_ext_import_proxy triggered by X.509 certificates with a Proxy Certificate Information extension. Affected upstream: GnuTLS < 3.3.26 and

CVE-2006-4790

CVE-2018-16253 (and related CVEs) describe a variant of CVE-2006-4790 where PKCS#1 v1.5 signature verification fails to reject excess data in digestAlgorithm.parameters, enabling remote forgery of signatures when small public exponents are used. Affected: axTLS (sig_verify in x509.c) up to versio...

CVE-2017-5335

GnuTLS CVE-2017-5335 affects the OpenPGP certificate handling in lib/opencdk/read-packet.c: streams reading certificates can trigger an out-of-memory crash via crafted OpenPGP data. Affected versions are GnuTLS before 3.3.26 and 3.5.x before 3.5.8. Multiple external advisories (CentOS, Red Hat, U...

CVE-2008-4989

Summary: CVE-2008-4989 affects the GnuTLS library. The vulnerability lies in _gnutls_x509_verify_certificate in libgnutls/lib/x509/verify.c, where the library can trust a chain whose last certificate is an arbitrary self-signed trusted cert. This allows a man-in-the-middle to spoof a certificate ...

CVE-2014-8155

GnuTLS before 2.9.10 does not verify CA certificate activation/expiration dates, enabling MITM via certificates not yet valid or no longer valid. Affected: GnuTLS library (pre-2.9.10). Mitigation: upgrade to 2.9.10 or later where the issue is fixed (per advisory references). If exploiting details...

CVE-2015-0282

GnuTLS before 3.1.0 does not verify that the RSA PKCS#1 signature algorithm matches the signature algorithm in the certificate, enabling remote downgrade attacks via unspecified vectors. Impact is downgrade/traffic manipulation risk with affected deployments. The CVE entry explicitly targets GnuTLS...

CVE-2015-6251

GnuTLS vulnerability (CVE‑2015‑6251) : A double‑free in the certificate DN decoding path, specifically in _gnutls_x509_dn_to_string(), can be triggered by very long DistinguishedName values in X.509 certificates. Affected versions are before 3.3.17 and 3.4.x before 3.4.4. Impact : remote denial o...

CVE-2009-2730

CVE-2009-2730 affects GnuTLS libgnutls where a NULL character in a domain name (CN or SAN) of an X.509 certificate is not handled correctly, enabling MITM spoofing of SSL servers if a crafted cert from a trusted CA is issued. Affected product/version: libgnutls in GnuTLS prior to 2.8.2. Impact: p...

CVE-2014-3468

The CVE concerns GNU Libtasn1 prior to version 3.6, where asn1_get_bit_der does not properly report an error for a negative bit length. This can enable context-dependent attackers to trigger out-of-bounds access via crafted ASN.1 data, potentially impacting applications using libtasn1. Public ref...

CVE-2017-7869

GnuTLS contains a vulnerability CVE-2017-7869: an out-of-bounds write caused by an integer overflow and heap-based buffer overflow in cdk_pkt_read (opencdk/read-packet.c). This affects older GnuTLS before 2017-02-20 and is a subset of GNUTLS-SA-2017-3; the issue can crash the application (denial ...

CVE-2012-1573

CVE-2012-1573 affects GnuTLS: gnutls_cipher.c in libgnutls handles data encrypted with a block cipher incorrectly, allowing remote attackers to trigger a denial of service (heap memory corruption and crash) via a crafted GenericBlockCipher record. It affects GnuTLS versions before 2.12.17 and 3.x...

CVE-2014-3469

CVE-2014-3469 affects GNU libtasn1 before 3.6, where the functions asn1_read_value_type and asn1_read_value may dereference a NULL ivalue. In this context, crafted ASN.1 data can trigger a NULL pointer dereference in the library, leading to a denial of service (crash). The vulnerability is noted ...

CVE-2014-8564

CVE-2014-8564 : GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 contains a flaw in the _gnutls_ecc_ansi_x963_export function of gnutls_ecc.c that allows remote attackers to cause a denial of service via a crafted ECC certificate or certificate signing request (CSR), related...

CVE-2005-1431

The CVE-2005-1431 issue affects GnuTLS: record packet parsing bug in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 can allow a remote attacker to cause a denial-of-service via crafted TLS handshakes (padding bytes in gnutils_cipher.c). The vulnerability is rated CVSS v2 base 5.0 (Network attack, ...

CVE-2012-0390

Technical details about CVE-2012-0390 (DTLS timing side-channel in GnuTLS

CVE-2015-3308

CVE-2015-3308: A double-free in GnuTLS’ lib/x509/x509_ext.c when parsing CRL distribution points (vulnerable in GnuTLS releases before 3.3.14) may allow remote DoS or other impact. Affected component: x509_ext.c; root cause: double-free; impact: DoS and possible unspecified effects; remediation: ...

CVE-2014-1959

GnuTLS CVE-2014-1959 affects lib/x509/verify.c where an X.509 Version 1 certificate is erroneously treated as an intermediate CA. This allows remote attackers who have a trusted V1 cert to issue new certificates, bypassing certain restrictions. Affected are GnuTLS releases prior to 3.1.21 and 3.2...

CVE-2015-8313

CVE-2015-8313 affects GnuTLS: the first padding byte in CBC mode is not correctly validated, enabling a MITM POODLE-style attack to potentially reveal plaintext. Connected sources show this vulnerability cited in multiple advisories (Debian DLA-364-1, SUSE/SUSE-SU-2016:0077-1, IBM FSM bulletin, N...

CVE-2016-4456

The CVE-2016-4456 issue affects GnuTLS, specifically version 3.4.12. The vulnerability stems from how GNUTLS_KEYLOGFILE is handled via getenv(), which can allow an attacker to overwrite and corrupt arbitrary files in the filesystem. Several connected sources confirm the impact and the affected co...