VYPR

rpm package

suse/gnutls&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

pkg:rpm/suse/gnutls&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5

Vulnerabilities (6)

  • CVE-2026-42009HigMay 18, 2026
    affected < 3.4.17-8.23.1fixed 3.4.17-8.23.1

    A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequen

  • CVE-2026-33846HigMay 4, 2026
    affected < 3.4.17-8.23.1fixed 3.4.17-8.23.1

    A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in merge_handshake_packet() where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the message_length

  • CVE-2026-33845HigApr 30, 2026
    affected < 3.4.17-8.23.1fixed 3.4.17-8.23.1

    A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of

  • CVE-2025-9820MedJan 26, 2026
    affected < 3.3.27-3.15.1fixed 3.3.27-3.15.1

    A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error c

  • CVE-2025-32990MedJul 10, 2025
    affected < 3.3.27-3.12.1fixed 3.3.27-3.12.1

    A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds (OOB) NULL pointer write, resulting in memory

  • CVE-2024-12243MedFeb 10, 2025
    affected < 3.4.17-8.17.1fixed 3.4.17-8.17.1

    A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to sen