CVE-2026-33845

high

Published 2026-04-30 · Modified 2026-05-26

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v4 NEW

—

not yet in upstream

VIR risk

7.5

Description

RHSA-2026:20612: gnutls security update (Important)

Predictions

Exploit likelihood

83%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Red Hat Errata — Red Hat Inc. · View original ↗ · Open-Errata-API

Description gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment Red Hat statement This issue marked as Important severity due to its remote, pre-authentication reachability and its impact on a critical DTLS handshake parsing path. The vulnerability can be triggered by an unauthenticated attacker sending crafted DTLS handshake fragments, requiring no prior access or interaction. It…

Description

gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

Red Hat statement

This issue marked as Important severity due to its remote, pre-authentication reachability and its impact on a critical DTLS handshake parsing path. The vulnerability can be triggered by an unauthenticated attacker sending crafted DTLS handshake fragments, requiring no prior access or interaction. It leads to an out-of-bounds read caused by an integer underflow in fragment reassembly, operating entirely on attacker-controlled input. Such flaws in low-level protocol parsing are particularly serious, as they may result in disclosure of sensitive process memory, including cryptographic or session-related data, and can also cause reliable application crashes leading to denial of service. Given that DTLS is commonly used in network-facing services such as VPNs and real-time communication systems, the exposure surface is broad. The combination of unauthenticated remote exploitation, memory safety violation, and potential confidentiality and availability impact justifies classifying this issue as high severity rather than moderate.

CVSS v3: 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Errata / fixed releases

Product	Package	Advisory	Released
Red Hat Enterprise Linux 10	`gnutls-0:3.8.10-4.el10_2`	RHSA-2026:20613	2026-05-26T00:00:00Z
Red Hat Enterprise Linux 8	`gnutls-0:3.6.16-8.el8_10.6`	RHSA-2026:20611	2026-05-26T00:00:00Z
Red Hat Enterprise Linux 8	`gnutls-0:3.6.16-8.el8_10.6`	RHSA-2026:20611	2026-05-26T00:00:00Z
Red Hat Hardened Images	`gnutls-main-3.8.13-1.hum1`	RHSA-2026:13274	2026-05-02T00:00:00Z

Package state

Product	Package	State
Red Hat Enterprise Linux 6	`gnutls`	Affected
Red Hat Enterprise Linux 7	`gnutls`	Affected
Red Hat Enterprise Linux 9	`gnutls`	Affected
Red Hat OpenShift Container Platform 4	`rhcos`	Affected

Apply commands

bash fix

Apply RHSA-2026:20613 for Red Hat Enterprise Linux 10

yum update -y gnutls
# or:
dnf upgrade -y gnutls

Affected

Vendor	Product	Version
redhat	Red Hat Enterprise Linux 6	`Affected`
redhat	Red Hat Enterprise Linux 7	`Affected`
redhat	Red Hat Enterprise Linux 9	`Affected`
redhat	Red Hat OpenShift Container Platform 4	`Affected`

OS impact

SUSE Affected 1 release

Version	Status	Fixed in
—	Affected	—

Red Hat Mixed 7 releases

Version	Status	Fixed in
10.0	Affected	—
9.0	Affected	—
9	Fixed	—
8.0	Affected	—
8	Fixed	—
7.0	Affected	—
6.0	Affected	—

Debian Fixed 5 releases

Version	Status	Fixed in
trixie	Fixed	`3.8.9-3+deb13u4`
sid	Fixed	`3.8.13-1`
forky	Fixed	`3.8.13-1`
bullseye	Fixed	`3.7.1-5+deb11u10`
bookworm	Fixed	`3.7.9-2+deb12u7`

Application impact

Vendor	Product	Versions	Fixed
gnu	gnutls	`-`
redhat	openshift_container_platform	`4.0`

References

CWEs

CWE-191

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.