Red Hat Security Advisory: gnutls security update
🔗 CVE IDs covered (11)
📋 Description
CVE-2026-3833 — gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison CVE-2026-5260 — gnutls: gnutls: Information disclosure via heap overread in RSA key exchange CVE-2026-33845 — gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment CVE-2026-33846 — gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly CVE-2026-42009 — gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability CVE-2026-42010 — gnutls: gnutls: Authentication Bypass via NUL Character in Username CVE-2026-42011 — gnutls: gnutls: Security bypass due to incorrect name constraint handling CVE-2026-42012 — gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs CVE-2026-42013 — gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name CVE-2026-42014 — gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin CVE-2026-42015 — gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
🔗 References (10)
- selfhttps://access.redhat.com/errata/RHSA-2026:20611
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2445763
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2450624
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2450625
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467279
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467289
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467437
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2467678
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_20611.json