16 matches found
CVE-2024-0553
CVE-2024-0553 affects GnuTLS and describes a timing side‑channel in RSA-PSK ClientKeyExchange that could leak data. Multiple connected advisories confirm affected package versions and provide fixes: Debian/Red Hat‑based mariners list upgrades to mitigate (examples include gnutls >= 3.7.11-1 or...
CVE-2023-5981
CVE-2023-5981 affects GnuTLS via timing side-channel in RSA-PSK ClientKeyExchange, potentially leaking data. Connected docs show affected gnutls versions before 3.7.11-1 (CBLMARINER: CVE-2023-5981 affecting package gnutls for versions less than 3.7.11-1) and note CVE-2024-0553 as an incomplete re...
CVE-2022-2509
CVE-2022-2509 is a vulnerability in the GnuTLS library (gnutls) caused by a double free during verification of PKCS7 signatures in gnutls_pkcs7_verify. Connected documents show affected packages across several ecosystems (e.g., Debian gnutls28, AlmaLinux gnutls, Cloud Foundry USN). The root cause...
CVE-2020-24659
GnuTLS up to version 3.6.14 is affected by CVE-2020-24659. The issue is described as a heap buffer overflow during TLS handshake involving a no_renegotiation alert and an invalid second handshake, with the crash occurring in the error handling path when gnutls_deinit is called after a handshake f...
CVE-2018-10844
CVE-2018-10844 affects GnuTLS HMAC-SHA-256 and is described in multiple sources (IBM advisories and third‑party feeds) as a Lucky Thirteen–style timing attack enabling distinguishing and plaintext‑recovery via crafted packets. Affected products include IBM Power Hardware Management Console and IB...
CVE-2018-10845
CVE-2018-10845 affects GnuTLS HMAC-SHA-384 and enables a Lucky Thirteen–style timing side-channel leading to potential plaintext recovery. The connected IBM advisories confirm remote exploitation via crafted packets to obtain information, with MEDIUM base scores and impact on confidentiality. Rem...
CVE-2021-4209
CVE-2021-4209 is a NULL pointer dereference in the GnuTLS library that can cause denial of service after authentication when zero-length input triggers undefined behavior in Nettle hash update paths. The vulnerability is applicable to GnuTLS and has been addressed in vendor advisories and Debian ...
CVE-2018-10846
CVE-2018-10846 describes a cache-based side-channel in GnuTLS that can enable plaintext recovery in cross-VM settings. An attacker could combine a Just in Time Prime+probe attack with a Lucky-13 attack by sending crafted packets to exploit this vulnerability. Remediation in publicly documented ad...
CVE-2009-2409
CVE-2009-2409 involves MD2 use in X.509 certificate signatures across NSS, GnuTLS, and OpenSSL. Root cause: MD2 hash weaknesses allow forging/collision-based certificate spoofing; public updates disable/avoid MD2 and patch implementations. Affected components include NSS library (Firefox usage), ...
CVE-2015-0294
The CVE-2015-0294 entry concerns GnuTLS before 3.3.13, where the library does not validate that the signature algorithms match when importing a certificate. The vulnerability is documented in multiple connected sources (e.g., MiracleLinux AXSA advisory referencing CVE-2015-0294 and vendor advisor...
CVE-2014-3467
GNUTLS/library libtasn1 vulnerability CVE-2014-3467 is due to multiple issues in the DER decoder of GNU Libtasn1 up to version 3.5.x (pre-3.6), exploited by crafted ASN.1 data to cause a denial of service via out-of-bounds read. The issue is confirmed in multiple advisories (F5 SOL15423, ALAS-201...
CVE-2008-4989
Summary: CVE-2008-4989 affects the GnuTLS library. The vulnerability lies in _gnutls_x509_verify_certificate in libgnutls/lib/x509/verify.c, where the library can trust a chain whose last certificate is an arbitrary self-signed trusted cert. This allows a man-in-the-middle to spoof a certificate ...
CVE-2014-3468
The CVE concerns GNU Libtasn1 prior to version 3.6, where asn1_get_bit_der does not properly report an error for a negative bit length. This can enable context-dependent attackers to trigger out-of-bounds access via crafted ASN.1 data, potentially impacting applications using libtasn1. Public ref...
CVE-2014-3469
CVE-2014-3469 affects GNU libtasn1 before 3.6, where the functions asn1_read_value_type and asn1_read_value may dereference a NULL ivalue. In this context, crafted ASN.1 data can trigger a NULL pointer dereference in the library, leading to a denial of service (crash). The vulnerability is noted ...
CVE-2025-32988
GnuTLS contains a double-free vulnerability (CVE-2025-32988) in SAN export logic for otherName when the type-id OID is invalid or malformed, leading to asn1_delete_structure() on a non-owned node and potential memory corruption or DoS. Public GnuTLS APIs can trigger it; impact is memory corruptio...
CVE-2009-1415
CVE-2009-1415 affects GnuTLS up to version 2.6.5 (fixed in 2.6.6). The flaw resides in lib/pk-libgcrypt.c within libgnutls, which mishandles invalid DSA signatures. A malformed DSA key can trigger a denial of service (application crash) and may cause additional impact, including a free of an unin...