HIGHCVE-2026-33845Published Modified CNA redhat
CVE-2026-33845: Gnutls: gnutls: denial of service via dtls zero-length fragment
A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 0:3.6.16-8.el8_10.6
- Affected Products
- 9
Fix available
0:3.6.16-8.el8_10.63.8.133.8.13-1.hum1
Affected packages
- unknown< 3.8.13 (from 0)
- Red Hat / Red Hat Enterprise Linux 8Fixed in 0:3.6.16-8.el8_10.6
- Red Hat / Red Hat Enterprise Linux 8Fixed in 0:3.6.16-8.el8_10.6
- Red Hat / Red Hat Hardened ImagesFixed in 3.8.13-1.hum1
- Red Hat / Red Hat Enterprise Linux 10
- Red Hat / Red Hat Enterprise Linux 6
- Red Hat / Red Hat Enterprise Linux 7
- Red Hat / Red Hat Enterprise Linux 9
- Red Hat / Red Hat OpenShift Container Platform 4
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H