Lucene search
K
GnuGnutls

74 matches found

CVE
CVE
added 2009/11/09 5:0 p.m.1308 views

CVE-2009-3555

CVE-2009-3555 concerns a TLS/SSL renegotiation flaw where renegotiation handshakes were not properly associated with the existing connection, enabling MITM data insertion in HTTPS and other TLS/SSL sessions (Project Mogul). Connected advisories show concrete mitigations and affected software: Pou...

9.8CVSS6AI score0.87264EPSS
CVE
CVE
added 2021/03/12 6:25 p.m.328 views

CVE-2021-20232

A vulnerability in GnuTLS (CVE-2021-20232) stems from a use-after-free in client_send_params (lib/ext/pre_shared_key.c), which may cause memory corruption and other consequences. The issue is within the GnuTLS library, affecting TLS 1.3 client handling of pre_shared_key extensions. Documented imp...

9.8CVSS9.5AI score0.03444EPSS
CVE
CVE
added 2021/03/12 6:23 p.m.325 views

CVE-2021-20231

The CVE-2021-20231 issue affects the GnuTLS library (gnutls) in the client handling of the TLS 1.3 key_share extension. The root cause is a use-after-free vulnerability that can result from dereferencing a pointer after realloc in the client path handling key_share, leading to memory corruption. ...

9.8CVSS9.5AI score0.03751EPSS
CVE
CVE
added 2023/02/15 12:0 a.m.286 views

CVE-2023-0361

CVE-2023-0361 describes a timing side-channel in GnuTLS during RSA ClientKeyExchange handling that can enable Bleichenbacher-style attacks to recover the RSA key and decrypt accompanying application data. The vulnerability affects GnuTLS implementations across multiple advisories and distribution...

7.4CVSS7.3AI score0.01403EPSS
CVE
CVE
added 2024/01/16 11:40 a.m.285 views

CVE-2024-0553

CVE-2024-0553 affects GnuTLS and describes a timing side‑channel in RSA-PSK ClientKeyExchange that could leak data. Multiple connected advisories confirm affected package versions and provide fixes: Debian/Red Hat‑based mariners list upgrades to mitigate (examples include gnutls >= 3.7.11-1 or...

7.5CVSS6.7AI score0.01614EPSS
CVE
CVE
added 2023/11/28 11:49 a.m.265 views

CVE-2023-5981

CVE-2023-5981 affects GnuTLS via timing side-channel in RSA-PSK ClientKeyExchange, potentially leaking data. Connected docs show affected gnutls versions before 3.7.11-1 (CBLMARINER: CVE-2023-5981 affecting package gnutls for versions less than 3.7.11-1) and note CVE-2024-0553 as an incomplete re...

5.9CVSS6.9AI score0.01257EPSS
CVE
CVE
added 2020/06/04 7:1 a.m.261 views

CVE-2020-13777

GnuTLS 3.6.x before 3.6.14 is affected by a flaw in how the TLS session-ticket encryption key is constructed, caused by an 2018-09-18 commit. The earliest affected version is 3.6.4 . Until the first key rotation, the TLS server uses incorrect data in place of a key derived from the application, l...

7.4CVSS7.5AI score0.17507EPSS
CVE
CVE
added 2022/08/01 2:1 p.m.256 views

CVE-2022-2509

CVE-2022-2509 is a vulnerability in the GnuTLS library (gnutls) caused by a double free during verification of PKCS7 signatures in gnutls_pkcs7_verify. Connected documents show affected packages across several ecosystems (e.g., Debian gnutls28, AlmaLinux gnutls, Cloud Foundry USN). The root cause...

7.5CVSS7.5AI score0.01492EPSS
CVE
CVE
added 2020/09/04 2:3 p.m.241 views

CVE-2020-24659

GnuTLS up to version 3.6.14 is affected by CVE-2020-24659. The issue is described as a heap buffer overflow during TLS handshake involving a no_renegotiation alert and an invalid second handshake, with the crash occurring in the error handling path when gnutls_deinit is called after a handshake f...

7.5CVSS7.3AI score0.0373EPSS
CVE
CVE
added 2020/04/03 12:42 p.m.236 views

CVE-2020-11501

CVE-2020-11501 affects GnuTLS 3.6.x prior to 3.6.13. The DTLS client uses 32 null bytes instead of random values during DTLS negotiations, removing randomness and breaking DTLS security guarantees. Affected range starts at 3.6.3 (2018-07-16) due to a 2017-10-06 commit. The issue was fixed in 3.6....

7.4CVSS7.2AI score0.03388EPSS
CVE
CVE
added 2018/12/03 2:0 p.m.230 views

CVE-2018-16868

CVE-2018-16868 concerns a Bleichenbacher-type side-channel padding oracle in GnuTLS during PKCS#1 v1.5 RSA verification. The provided documents indicate this affects GnuTLS across Linux distributions (e.g., Red Hat). The attack requires local access on the same physical core as the victim process...

5.6CVSS5.3AI score0.00573EPSS
CVE
CVE
added 2024/01/16 2:1 p.m.223 views

CVE-2024-0567

CVE-2024-0567 – GnuTLS issue affects the certificate chain validation when using cockpit-certificate-ensure, causing a denial-of-service that can be triggered by an unauthenticated remote attacker. Documents refer to GnuTLS in cockpit and describe distributed-trust chain rejection as the root cau...

7.5CVSS7.2AI score0.01408EPSS
CVE
CVE
added 2012/03/26 7:0 p.m.213 views

CVE-2012-1569

CVE-2012-1569 involves the libtasn1 ASN.1 DER library. The issue is a flaw in asn1_get_length_der handling large length values, present in libtasn1 before 2.12 and used by GnuTLS before 3.0.16. A crafted DER structure can trigger heap memory corruption, leading to a remote denial of service (appl...

5CVSS8.8AI score0.0446EPSS
CVE
CVE
added 2019/03/27 5:24 p.m.211 views

CVE-2019-3829

CVE-2019-3829 affects GnuTLS versions prior to 3.6.7 (including 3.5.8+). The issue is a memory corruption (double free) in the certificate verification API (e.g., verify_crt and gnutls_x509_trust_list_verify_crt). This can enable arbitrary code execution or crash scenarios when a client or server...

7.5CVSS6.2AI score0.58969EPSS
CVE
CVE
added 2018/08/22 1:0 p.m.210 views

CVE-2018-10844

CVE-2018-10844 affects GnuTLS HMAC-SHA-256 and is described in multiple sources (IBM advisories and third‑party feeds) as a Lucky Thirteen–style timing attack enabling distinguishing and plaintext‑recovery via crafted packets. Affected products include IBM Power Hardware Management Console and IB...

5.9CVSS5.7AI score0.03623EPSS
CVE
CVE
added 2022/08/24 3:7 p.m.209 views

CVE-2021-4209

CVE-2021-4209 is a NULL pointer dereference in the GnuTLS library that can cause denial of service after authentication when zero-length input triggers undefined behavior in Nettle hash update paths. The vulnerability is applicable to GnuTLS and has been addressed in vendor advisories and Debian ...

6.5CVSS6.3AI score0.01383EPSS
CVE
CVE
added 2018/08/22 1:0 p.m.206 views

CVE-2018-10845

CVE-2018-10845 affects GnuTLS HMAC-SHA-384 and enables a Lucky Thirteen–style timing side-channel leading to potential plaintext recovery. The connected IBM advisories confirm remote exploitation via crafted packets to obtain information, with MEDIUM base scores and impact on confidentiality. Rem...

5.9CVSS5.7AI score0.03623EPSS
CVE
CVE
added 2019/04/01 2:16 p.m.205 views

CVE-2019-3836

GNUTLS CVE-2019-3836: uninitialized/invalid pointer access in post-handshake message handling (TLS1.3 async messages) on versions prior to 3.6.7. Remote attacker can cause crash/Denial of Service; may enable arbitrary code execution per related advisories. Remediation: upgrade to GNUTLS 3.6.7 or ...

7.5CVSS6.2AI score0.03401EPSS
CVE
CVE
added 2018/08/22 1:0 p.m.200 views

CVE-2018-10846

CVE-2018-10846 describes a cache-based side-channel in GnuTLS that can enable plaintext recovery in cross-VM settings. An attacker could combine a Just in Time Prime+probe attack with a Lucky-13 attack by sending crafted packets to exploit this vulnerability. Remediation in publicly documented ad...

5.6CVSS5.5AI score0.00388EPSS
CVE
CVE
added 2017/06/16 7:0 p.m.197 views

CVE-2017-7507

CVE-2017-7507 affects GnuTLS 3.5.12 and earlier, which are vulnerable to a NULL pointer dereference when decoding a status_request extension in ClientHello, potentially crashing the server. Several connected advisories confirm the issue and provide remediation: upgrade to GnuTLS 3.5.13 or newer (...

7.5CVSS7.2AI score0.0341EPSS
CVE
CVE
added 2009/07/30 7:0 p.m.196 views

CVE-2009-2409

CVE-2009-2409 involves MD2 use in X.509 certificate signatures across NSS, GnuTLS, and OpenSSL. Root cause: MD2 hash weaknesses allow forging/collision-based certificate spoofing; public updates disable/avoid MD2 and patch implementations. Affected components include NSS library (Firefox usage), ...

5.1CVSS5.8AI score0.04506EPSS
CVE
CVE
added 2013/07/03 6:0 p.m.190 views

CVE-2013-2116

CVE-2013-2116 affects GnuTLS 2.12.23 where the function gnutls_ciphertext2compressed in lib/gnutls_cipher.c can trigger a buffer over-read and crash under a crafted padding length, causing a denial of service. NOTE: this entry is linked to previous CVE-2013-0169 fixes; ALT Linux advisories indica...

5CVSS6.4AI score0.03761EPSS
CVE
CVE
added 2014/03/06 6:0 p.m.181 views

CVE-2014-0092

GnuTLS CVE-2014-0092 affects lib/x509/verify.c: vulnerable in GnuTLS releases before 3.1.22 and before 3.2.12 (3.2.x). The flaw arises from improper handling of unspecified errors during X.509 certificate verification from SSL servers, enabling MITM via a crafted certificate. Public references co...

5.8CVSS7.1AI score0.29958EPSS
CVE
CVE
added 2014/06/03 2:0 p.m.167 views

CVE-2014-3466

CVE-2014-3466: A buffer overflow in GnuTLS reads the ServerHello session ID, enabling memory corruption and potential code execution. Affected: GnuTLS in various 3.1.x/3.2.x/3.3.x lines (before 3.1.25, 3.2.15, 3.3.4). Impact: denial of service or possible remote code execution via a crafted Serve...

6.8CVSS7.4AI score0.11221EPSS
CVE
CVE
added 2020/01/27 3:12 p.m.167 views

CVE-2015-0294

The CVE-2015-0294 entry concerns GnuTLS before 3.3.13, where the library does not validate that the signature algorithms match when importing a certificate. The vulnerability is documented in multiple connected sources (e.g., MiracleLinux AXSA advisory referencing CVE-2015-0294 and vendor advisor...

7.5CVSS7.3AI score0.01586EPSS
CVE
CVE
added 2013/11/19 7:0 p.m.161 views

CVE-2013-4466

GnuTLS has a DANE (libdane) heap/buffer overflow in dane_query_tlsa that can cause memory corruption on receipt of a DNS response with more than four DANE entries. Affected branches: GnuTLS 3.1.x prior to 3.1.15 and 3.2.x prior to 3.2.5. Publicly described impact is denial of service via memory i...

5CVSS6.5AI score0.01978EPSS
CVE
CVE
added 2017/03/24 3:0 p.m.160 views

CVE-2017-5336

CVE-2017-5336 : GnuTLS contains a stack-based buffer overflow in the cdk_pk_get_keyid function (lib/opencdk/pubkey.c), exploitable via crafted OpenPGP certificates. Affected versions are GnuTLS before 3.3.26 and 3.5.x before 3.5.8. Remediation: upgrade to a fixed release (upstream 3.3.26 or later...

9.8CVSS8.7AI score0.07071EPSS
CVE
CVE
added 2013/02/08 7:0 p.m.158 views

CVE-2013-1619

CVE-2013-1619 affects the TLS implementation in GnuTLS prior to 2.12.23, 3.0.x prior to 3.0.28, and 3.1.x prior to 3.1.7. The vulnerability arises from improper consideration of timing side-channel attacks on a noncompliant CBC padding check during processing of malformed CBC padding, enabling re...

4CVSS6.8AI score0.0644EPSS
CVE
CVE
added 2017/03/24 3:0 p.m.153 views

CVE-2017-5337

CVE-2017-5337 is a GnuTLS vulnerability involving multiple heap-based buffer overflows in read_attribute triggered by crafted OpenPGP certificates. Affected versions are GnuTLS builds before 3.3.26 and 3.5.x before 3.5.8. The connected materials confirm the root cause as heap overflows in read_at...

9.8CVSS8.5AI score0.06179EPSS
CVE
CVE
added 2016/09/27 3:0 p.m.142 views

CVE-2016-7444

CVE-2016-7444 affects GnuTLS: the function gnutls_ocsp_resp_check_crt in lib/x509/ocsp.c fails to verify the serial length of OCSP responses, due to trailing bytes from gnutls_malloc. This can allow remote attackers to bypass certificate validation. Affected versions are GnuTLS before 3.4.15 and ...

7.5CVSS7.3AI score0.02437EPSS
CVE
CVE
added 2014/06/05 8:0 p.m.129 views

CVE-2014-3467

GNUTLS/library libtasn1 vulnerability CVE-2014-3467 is due to multiple issues in the DER decoder of GNU Libtasn1 up to version 3.5.x (pre-3.6), exploited by crafted ASN.1 data to cause a denial of service via out-of-bounds read. The issue is confirmed in multiple advisories (F5 SOL15423, ALAS-201...

5CVSS6AI score0.068EPSS
CVE
CVE
added 2026/04/30 5:41 p.m.128 views

CVE-2026-33845

The CVE-2026-33845 issue is a GnuTLS DTLS handshake parsing flaw that can trigger an integer underflow during reassembly of malformed DTLS fragments (zero length, non-zero offset), causing an out-of-bounds read. Connected OSV entries indicate affected packages such as rootio-gnutls28 in Root:Debi...

9.1CVSS5.2AI score0.00805EPSS
CVE
CVE
added 2017/03/24 3:0 p.m.127 views

CVE-2017-5334

CVE-2017-5334: Double-free vulnerability in GnuTLS in gnutls_x509_ext_import_proxy triggered by X.509 certificates with a Proxy Certificate Information extension. Affected upstream: GnuTLS < 3.3.26 and

9.8CVSS8.5AI score0.32754EPSS
CVE
CVE
added 2006/09/14 7:0 p.m.125 views

CVE-2006-4790

CVE-2018-16253 (and related CVEs) describe a variant of CVE-2006-4790 where PKCS#1 v1.5 signature verification fails to reject excess data in digestAlgorithm.parameters, enabling remote forgery of signatures when small public exponents are used. Affected: axTLS (sig_verify in x509.c) up to versio...

5CVSS6.6AI score0.02427EPSS
CVE
CVE
added 2008/11/13 12:0 a.m.122 views

CVE-2008-4989

Summary: CVE-2008-4989 affects the GnuTLS library. The vulnerability lies in _gnutls_x509_verify_certificate in libgnutls/lib/x509/verify.c, where the library can trust a chain whose last certificate is an arbitrary self-signed trusted cert. This allows a man-in-the-middle to spoof a certificate ...

5.9CVSS5.9AI score0.01882EPSS
CVE
CVE
added 2017/03/24 3:0 p.m.121 views

CVE-2017-5335

GnuTLS CVE-2017-5335 affects the OpenPGP certificate handling in lib/opencdk/read-packet.c: streams reading certificates can trigger an out-of-memory crash via crafted OpenPGP data. Affected versions are GnuTLS before 3.3.26 and 3.5.x before 3.5.8. Multiple external advisories (CentOS, Red Hat, U...

7.5CVSS7.9AI score0.08009EPSS
CVE
CVE
added 2015/08/14 6:0 p.m.110 views

CVE-2014-8155

GnuTLS before 2.9.10 does not verify CA certificate activation/expiration dates, enabling MITM via certificates not yet valid or no longer valid. Affected: GnuTLS library (pre-2.9.10). Mitigation: upgrade to 2.9.10 or later where the issue is fixed (per advisory references). If exploiting details...

4.3CVSS7.1AI score0.01046EPSS
CVE
CVE
added 2015/03/24 5:0 p.m.108 views

CVE-2015-0282

GnuTLS before 3.1.0 does not verify that the RSA PKCS#1 signature algorithm matches the signature algorithm in the certificate, enabling remote downgrade attacks via unspecified vectors. Impact is downgrade/traffic manipulation risk with affected deployments. The CVE entry explicitly targets GnuTLS...

5CVSS7.1AI score0.01397EPSS
CVE
CVE
added 2009/08/12 10:0 a.m.107 views

CVE-2009-2730

CVE-2009-2730 affects GnuTLS libgnutls where a NULL character in a domain name (CN or SAN) of an X.509 certificate is not handled correctly, enabling MITM spoofing of SSL servers if a crafted cert from a trusted CA is issued. Affected product/version: libgnutls in GnuTLS prior to 2.8.2. Impact: p...

7.5CVSS5.5AI score0.02151EPSS
CVE
CVE
added 2015/08/24 2:0 p.m.106 views

CVE-2015-6251

GnuTLS vulnerability (CVE‑2015‑6251) : A double‑free in the certificate DN decoding path, specifically in _gnutls_x509_dn_to_string(), can be triggered by very long DistinguishedName values in X.509 certificates. Affected versions are before 3.3.17 and 3.4.x before 3.4.4. Impact : remote denial o...

5CVSS7.1AI score0.1903EPSS
CVE
CVE
added 2014/06/05 8:0 p.m.104 views

CVE-2014-3468

The CVE concerns GNU Libtasn1 prior to version 3.6, where asn1_get_bit_der does not properly report an error for a negative bit length. This can enable context-dependent attackers to trigger out-of-bounds access via crafted ASN.1 data, potentially impacting applications using libtasn1. Public ref...

7.5CVSS5.8AI score0.03789EPSS
CVE
CVE
added 2025/07/10 8:4 a.m.104 views

CVE-2025-32988

GnuTLS contains a double-free vulnerability (CVE-2025-32988) in SAN export logic for otherName when the type-id OID is invalid or malformed, leading to asn1_delete_structure() on a non-owned node and potential memory corruption or DoS. Public GnuTLS APIs can trigger it; impact is memory corruptio...

8.2CVSS6.8AI score0.01185EPSS
CVE
CVE
added 2025/07/10 9:41 a.m.102 views

CVE-2025-32990

CVE-2025-32990 is a GnuTLS issue affecting certtool template parsing. A heap-buffer-overflow (off-by-one) can cause an out-of-bounds write to a NULL pointer, leading to memory corruption and a potential denial-of-service. The connected advisories confirm the vulnerability in GnuTLS and reference ...

8.2CVSS6.6AI score0.0072EPSS
CVE
CVE
added 2017/04/14 4:30 a.m.101 views

CVE-2017-7869

GnuTLS contains a vulnerability CVE-2017-7869: an out-of-bounds write caused by an integer overflow and heap-based buffer overflow in cdk_pkt_read (opencdk/read-packet.c). This affects older GnuTLS before 2017-02-20 and is a subset of GNUTLS-SA-2017-3; the issue can crash the application (denial ...

7.5CVSS7.3AI score0.02839EPSS
CVE
CVE
added 2012/03/26 7:0 p.m.99 views

CVE-2012-1573

CVE-2012-1573 affects GnuTLS: gnutls_cipher.c in libgnutls handles data encrypted with a block cipher incorrectly, allowing remote attackers to trigger a denial of service (heap memory corruption and crash) via a crafted GenericBlockCipher record. It affects GnuTLS versions before 2.12.17 and 3.x...

5CVSS8.1AI score0.04202EPSS
CVE
CVE
added 2014/11/13 3:0 p.m.98 views

CVE-2014-8564

CVE-2014-8564 : GnuTLS 3.x before 3.1.28, 3.2.x before 3.2.20, and 3.3.x before 3.3.10 contains a flaw in the _gnutls_ecc_ansi_x963_export function of gnutls_ecc.c that allows remote attackers to cause a denial of service via a crafted ECC certificate or certificate signing request (CSR), related...

5CVSS6.3AI score0.03281EPSS
CVE
CVE
added 2014/06/05 8:0 p.m.97 views

CVE-2014-3469

CVE-2014-3469 affects GNU libtasn1 before 3.6, where the functions asn1_read_value_type and asn1_read_value may dereference a NULL ivalue. In this context, crafted ASN.1 data can trigger a NULL pointer dereference in the library, leading to a denial of service (crash). The vulnerability is noted ...

5CVSS5.6AI score0.03817EPSS
CVE
CVE
added 2005/05/03 4:0 a.m.93 views

CVE-2005-1431

The CVE-2005-1431 issue affects GnuTLS: record packet parsing bug in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 can allow a remote attacker to cause a denial-of-service via crafted TLS handshakes (padding bytes in gnutils_cipher.c). The vulnerability is rated CVSS v2 base 5.0 (Network attack, ...

5CVSS6.4AI score0.01931EPSS
CVE
CVE
added 2012/01/06 1:0 a.m.91 views

CVE-2012-0390

Technical details about CVE-2012-0390 (DTLS timing side-channel in GnuTLS

4.3CVSS8.4AI score0.0123EPSS
CVE
CVE
added 2014/03/06 6:0 p.m.91 views

CVE-2014-1959

GnuTLS CVE-2014-1959 affects lib/x509/verify.c where an X.509 Version 1 certificate is erroneously treated as an intermediate CA. This allows remote attackers who have a trusted V1 cert to issue new certificates, bypassing certain restrictions. Affected are GnuTLS releases prior to 3.1.21 and 3.2...

5.8CVSS6.3AI score0.03416EPSS
Total number of security vulnerabilities74