Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how gnutls compares to other vendors in security performance

View Risk Score →

GnuTLS libgnutlsGnutls: gnutls: security bypass due to incorrect name constraint handling

Risk 59
Severity
7.4
First published (updated )
CVE-2026-42011

GnuTLS libgnutlslibgnutls: Fix intersecting empty constraints Permitted name constraints were wrongfully ignored …

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2467437

redhat Enterprise LinuxGnutls: gnutls: authentication bypass via nul character in username

Risk 90
Severity
9.8
First published (updated )
CVE-2026-42010

GnuTLS libgnutlslibgnutls: Servers configured with RSA-PSK have wrongfully matched usernames with NUL charact…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2467289

GNUTLS GNUTLSGnutls: gnutls: denial of service via dtls packet reordering vulnerability

Risk 46
Severity
7.5
First published (updated )
CVE-2026-42009
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secgnutls 3.8.13 leased with 12 CVE fixes and mo

First published (updated )
https://seclists.org/oss-sec/2026/q2/288

GNUTLS GNUTLSGnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fragment reassembly

Risk 46
Severity
7.5
First published (updated )
CVE-2026-33846

redhat Enterprise LinuxGnutls: gnutls: denial of service via dtls zero-length fragment

Risk 70
Severity
9.1
First published (updated )
CVE-2026-33845

redhat Enterprise LinuxGnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison

Risk 59
Severity
7.4
First published (updated )
CVE-2026-3833

GNUTLS GNUTLSgnutls compares nameConstraints labels using a case-sensitive memcmp path without an ascii-casefold …

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2445763
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise LinuxGnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response

Risk 21
Severity
3.7
First published (updated )
CVE-2026-3832

GNUTLS GNUTLSgnutls matches a stapled ocsp response to the server certificate by scanning SingleResponse records,…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2445762

GNUTLS GNUTLSGnutls: gnutls: remote denial of service via crafted clienthello with invalid psk binder

Risk 46
Severity
7.5
First published (updated )
CVE-2026-1584

GNUTLS GNUTLSNull Pointer Dereference

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2435258

GNUTLS GNUTLSGnutls: gnutls: denial of service via excessive resource consumption during certificate verification

Risk 29
Severity
5.3
First published (updated )
CVE-2025-14831
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

GNUTLS GNUTLSVerifying Certificates with large amout of name constraints and subject alternative names makes GnuT…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2423177

gnutls 3.8.11 leased with fix for CVE-2025-9820

First published (updated )
https://seclists.org/oss-sec/2025/q4/203

GNUTLS GNUTLSGnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function

Risk 22
Severity
4
First published (updated )
CVE-2025-9820

GNUTLS GNUTLSBuffer Overflow

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2392528

gnutls 3.8.10 fixes 4 CVEs

First published (updated )
https://seclists.org/oss-sec/2025/q3/34
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

GNUTLS GNUTLSGnutls: null pointer dereference in _gnutls_figure_common_ciphersuite()

Risk 34
Severity
6.5
EPSS
0.05%
First published (updated )
CVE-2025-6395

GNUTLS GNUTLSNull Pointer Dereference

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2376755

redhat Enterprise LinuxGnutls: vulnerability in gnutls othername san export

Risk 57
Severity
8.2
First published (updated )
CVE-2025-32988

redhat Enterprise LinuxGnutls: vulnerability in gnutls sct extension parsing

Risk 28
Severity
5.3
First published (updated )
CVE-2025-32989

redhat Enterprise LinuxGnutls: vulnerability in gnutls certtool template parsing

Risk 57
Severity
8.2
First published (updated )
CVE-2025-32990
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

GNUTLS GNUTLSA double-free vulnerability exists in GnuTLS (confirmed in version 3.8.9) due to incorrect ownership…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2359622

GNUTLS GNUTLSA heap-buffer-overread vulnerability exists in GnuTLS (confirmed in version 3.8.9) due to unsafe han…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2359621

GnuTLS certtoolA heap-buffer-overflow (off-by-one) vulnerability exists in the template parsing logic within the ce…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2359620

AdaCore Ada Web ServerWhen AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is vul…

Risk 56
Severity
7.4
First published (updated )
CVE-2024-55581

debian/gnutls28Gnutls: gnutls impacted by inefficient der decoding in libtasn1 leading to remote dos

Risk 27
Severity
5.3
First published (updated )
CVE-2024-12243
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203