Vulnerability-Lookup

CVE-2026-3832 (GCVE-0-2026-3832)

Vulnerability from cvelistv5 – Published: 2026-04-30 17:41 – Updated: 2026-06-16 22:01

Title

Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response

Summary

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.

Severity

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

SSVC

Exploitation: poc Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-179 - Incorrect Behavior Order: Early Validation

Assigner

redhat

References

8 references

URL	Tags
https://access.redhat.com/errata/RHSA-2026:13274	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:20612	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:20613	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:26319	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:26409	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2026-3832	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2445762	issue-trackingx_refsource_REDHAT
https://gitlab.com/gnutls/gnutls/-/issues/1801

Impacted products

13 products

Vendor	Product	Version
		Affected: 0 , < 3.8.13 (semver)
Red Hat	Red Hat Enterprise Linux 10	Unaffected: 0:3.8.10-4.el10_2 , < * (rpm) cpe:/o:redhat:enterprise_linux:10.2
Red Hat	Red Hat Enterprise Linux 10.0 Extended Update Support	Unaffected: 0:3.8.9-9.el10_0.19 , < * (rpm) cpe:/o:redhat:enterprise_linux_eus:10.0
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:3.8.10-4.el9_8 , < * (rpm) cpe:/a:redhat:enterprise_linux:9::appstream cpe:/o:redhat:enterprise_linux:9::baseos
Red Hat	Red Hat Hardened Images	Unaffected: 3.8.13-1.hum1 , < * (rpm) cpe:/a:redhat:hummingbird:1
Red Hat	Red Hat Update Infrastructure 5	Unaffected: 1781525684 , < * (rpm) cpe:/a:redhat:rhui:5::el9
Red Hat	Red Hat Update Infrastructure 5	Unaffected: 1781525671 , < * (rpm) cpe:/a:redhat:rhui:5::el9
Red Hat	Red Hat Update Infrastructure 5	Unaffected: 1781525693 , < * (rpm) cpe:/a:redhat:rhui:5::el9
Red Hat	Red Hat Update Infrastructure 5	Unaffected: 1781525739 , < * (rpm) cpe:/a:redhat:rhui:5::el9
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Date Public

2026-04-30 17:29

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-3832",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-30T18:22:07.438915Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-18T20:22:06.192Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://gitlab.com/gnutls/gnutls",
          "defaultStatus": "unaffected",
          "packageName": "gnutls",
          "versions": [
            {
              "lessThan": "3.8.13",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:10.2"
          ],
          "defaultStatus": "affected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 10",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:3.8.10-4.el10_2",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux_eus:10.0"
          ],
          "defaultStatus": "affected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 10.0 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:3.8.9-9.el10_0.19",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/o:redhat:enterprise_linux:9::baseos"
          ],
          "defaultStatus": "affected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:3.8.10-4.el9_8",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/o:redhat:enterprise_linux:9::baseos"
          ],
          "defaultStatus": "affected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:3.8.10-4.el9_8",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:hummingbird:1"
          ],
          "defaultStatus": "affected",
          "packageName": "gnutls-main",
          "product": "Red Hat Hardened Images",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "3.8.13-1.hum1",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:rhui:5::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhui5/cds-rhel9",
          "product": "Red Hat Update Infrastructure 5",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1781525684",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:rhui:5::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhui5/haproxy-rhel9",
          "product": "Red Hat Update Infrastructure 5",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1781525671",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:rhui:5::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhui5/installer-rhel9",
          "product": "Red Hat Update Infrastructure 5",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1781525693",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:rhui:5::el9"
          ],
          "defaultStatus": "affected",
          "packageName": "rhui5/rhua-rhel9",
          "product": "Red Hat Update Infrastructure 5",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1781525739",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unaffected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unaffected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "gnutls",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:openshift:4"
          ],
          "defaultStatus": "affected",
          "packageName": "rhcos",
          "product": "Red Hat OpenShift Container Platform 4",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2026-04-30T17:29:25.738Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Low"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-179",
              "description": "Incorrect Behavior Order: Early Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-16T22:01:48.376Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2026:13274",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        },
        {
          "name": "RHSA-2026:20612",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        },
        {
          "name": "RHSA-2026:20613",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        },
        {
          "name": "RHSA-2026:26319",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:26319"
        },
        {
          "name": "RHSA-2026:26409",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:26409"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
        },
        {
          "name": "RHBZ#2445762",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445762"
        },
        {
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2026-03-09T13:41:32.810Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2026-04-30T17:29:25.738Z",
          "value": "Made public."
        }
      ],
      "title": "Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
        }
      ],
      "x_generator": {
        "engine": "cvelib 1.8.0"
      },
      "x_redhatCweChain": "CWE-179: Incorrect Behavior Order: Early Validation"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2026-3832",
    "datePublished": "2026-04-30T17:41:28.896Z",
    "dateReserved": "2026-03-09T13:44:37.841Z",
    "dateUpdated": "2026-06-16T22:01:48.376Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-3832",
      "date": "2026-06-17",
      "epss": "0.0065",
      "percentile": "0.46223"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-3832\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2026-04-30T18:16:30.433\",\"lastModified\":\"2026-06-02T17:16:28.717\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.7,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-179\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:gnutls:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33A22858-21E1-479F-A9C4-AD2EFD059B93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:hardened_images:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87DEB507-5B64-47D7-9A50-3B87FD1E571F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"932D137F-528B-4526-9A89-CD59FA1AB0FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D65C2163-CFC2-4ABB-8F4E-CB09CEBD006C\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13274\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20612\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20613\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-3832\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2445762\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://gitlab.com/gnutls/gnutls/-/issues/1801\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://gitlab.com/gnutls/gnutls/-/issues/1801\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-3832\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-30T18:22:07.438915Z\"}}}], \"references\": [{\"url\": \"https://gitlab.com/gnutls/gnutls/-/issues/1801\", \"tags\": [\"exploit\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-30T18:22:22.233Z\"}}], \"cna\": {\"title\": \"Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Low\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 3.7, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.8.13\", \"versionType\": \"semver\"}], \"packageName\": \"gnutls\", \"collectionURL\": \"https://gitlab.com/gnutls/gnutls\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:3.8.10-4.el10_2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux_eus:10.0\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10.0 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:3.8.9-9.el10_0.19\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\", \"cpe:/o:redhat:enterprise_linux:9::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:3.8.10-4.el9_8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\", \"cpe:/o:redhat:enterprise_linux:9::baseos\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:3.8.10-4.el9_8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:hummingbird:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Hardened Images\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3.8.13-1.hum1\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"gnutls-main\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1781525684\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhui5/cds-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1781525671\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhui5/haproxy-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1781525693\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhui5/installer-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhui:5::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Update Infrastructure 5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1781525739\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhui5/rhua-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"gnutls\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"rhcos\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-03-09T13:41:32.810Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-04-30T17:29:25.738Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2026-04-30T17:29:25.738Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2026:13274\", \"name\": \"RHSA-2026:13274\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20612\", \"name\": \"RHSA-2026:20612\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20613\", \"name\": \"RHSA-2026:20613\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26319\", \"name\": \"RHSA-2026:26319\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:26409\", \"name\": \"RHSA-2026:26409\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2026-3832\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2445762\", \"name\": \"RHBZ#2445762\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://gitlab.com/gnutls/gnutls/-/issues/1801\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.\"}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-179\", \"description\": \"Incorrect Behavior Order: Early Validation\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2026-06-16T22:01:48.376Z\"}, \"x_redhatCweChain\": \"CWE-179: Incorrect Behavior Order: Early Validation\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-3832\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-06-16T22:01:48.376Z\", \"dateReserved\": \"2026-03-09T13:44:37.841Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2026-04-30T17:41:28.896Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

FKIE_CVE-2026-3832

Vulnerability from fkie_nvd - Published: 2026-04-30 18:16 - Updated: 2026-06-02 17:16

Severity

3.7 (Low) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

References

URL	Tags
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2026:13274	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2026:20612
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2026:20613
secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2026-3832	Third Party Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2445762	Issue Tracking, Third Party Advisory
secalert@redhat.com	https://gitlab.com/gnutls/gnutls/-/issues/1801	Exploit, Issue Tracking, Vendor Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://gitlab.com/gnutls/gnutls/-/issues/1801	Exploit, Issue Tracking, Vendor Advisory

Impacted products

Vendor	Product	Version
gnu	gnutls	-
redhat	hardened_images	-
redhat	openshift_container_platform	4.0
redhat	enterprise_linux	6.0
redhat	enterprise_linux	7.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux	9.0
redhat	enterprise_linux	10.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gnu:gnutls:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "33A22858-21E1-479F-A9C4-AD2EFD059B93",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:redhat:hardened_images:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "87DEB507-5B64-47D7-9A50-3B87FD1E571F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "932D137F-528B-4526-9A89-CD59FA1AB0FE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D65C2163-CFC2-4ABB-8F4E-CB09CEBD006C",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust."
    }
  ],
  "id": "CVE-2026-3832",
  "lastModified": "2026-06-02T17:16:28.717",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 3.7,
          "baseSeverity": "LOW",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 1.4,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-04-30T18:16:30.433",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2026:13274"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2026:20612"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2026:20613"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445762"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit",
        "Issue Tracking",
        "Vendor Advisory"
      ],
      "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "Exploit",
        "Issue Tracking",
        "Vendor Advisory"
      ],
      "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-179"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    }
  ]
}

GHSA-3RQJ-4QQW-JGWR

Vulnerability from github – Published: 2026-04-30 18:30 – Updated: 2026-06-02 18:31

Details

Severity

3.7 (Low)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-3832"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-179"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-04-30T18:16:30Z",
    "severity": "LOW"
  },
  "details": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.",
  "id": "GHSA-3rqj-4qqw-jgwr",
  "modified": "2026-06-02T18:31:24Z",
  "published": "2026-04-30T18:30:33Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2026:13274"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2026:20612"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2026:20613"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445762"
    },
    {
      "type": "WEB",
      "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

MSRC_CVE-2026-3832

Vulnerability from csaf_microsoft - Published: 2026-04-02 00:00 - Updated: 2026-06-03 01:45

Summary

Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

CVE-2026-3832

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-179 - Incorrect Behavior Order: Early Validation

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 21391-17084		—
Unresolved product id: 20911-17084		—

Known affected 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 17084-1		—	Vendor Fix fix
Unresolved product id: 17084-3		—	Vendor Fix fix

Under investigation 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 17086-2		—

References

4 references

URL	Category
https://msrc.microsoft.com/csaf/vex/2026/msrc_cve…	self
https://support.microsoft.com/lifecycle	external
https://www.first.org/cvss	external
https://msrc.microsoft.com/csaf/vex/2026/msrc_cve…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2026-3832 Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response - VEX",
        "url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-3832.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response",
    "tracking": {
      "current_release_date": "2026-06-03T01:45:43.000Z",
      "generator": {
        "date": "2026-06-03T07:57:49.907Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2026-3832",
      "initial_release_date": "2026-04-02T00:00:00.000Z",
      "revision_history": [
        {
          "date": "2026-05-07T01:11:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2026-05-09T01:39:42.000Z",
          "legacy_version": "2",
          "number": "2",
          "summary": "Information published."
        },
        {
          "date": "2026-06-01T14:40:28.000Z",
          "legacy_version": "3",
          "number": "3",
          "summary": "Information published."
        },
        {
          "date": "2026-06-03T01:45:43.000Z",
          "legacy_version": "4",
          "number": "4",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2.0",
                "product": {
                  "name": "CBL Mariner 2.0",
                  "product_id": "17086"
                }
              },
              {
                "category": "product_version",
                "name": "3.0",
                "product": {
                  "name": "Azure Linux 3.0",
                  "product_id": "17084"
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003cazl3 gnutls 0:3.8.3-11.azl3",
                "product": {
                  "name": "\u003cazl3 gnutls 0:3.8.3-11.azl3",
                  "product_id": "1"
                }
              },
              {
                "category": "product_version",
                "name": "azl3 gnutls 0:3.8.3-11.azl3",
                "product": {
                  "name": "azl3 gnutls 0:3.8.3-11.azl3",
                  "product_id": "21391"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003cazl3 gnutls 0:3.8.3-8.azl3",
                "product": {
                  "name": "\u003cazl3 gnutls 0:3.8.3-8.azl3",
                  "product_id": "3"
                }
              },
              {
                "category": "product_version",
                "name": "azl3 gnutls 0:3.8.3-8.azl3",
                "product": {
                  "name": "azl3 gnutls 0:3.8.3-8.azl3",
                  "product_id": "20911"
                }
              }
            ],
            "category": "product_name",
            "name": "gnutls"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003cazl3 gnutls 0:3.8.3-11.azl3 as a component of Azure Linux 3.0",
          "product_id": "17084-1"
        },
        "product_reference": "1",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 gnutls 0:3.8.3-11.azl3 as a component of Azure Linux 3.0",
          "product_id": "21391-17084"
        },
        "product_reference": "21391",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003cazl3 gnutls 0:3.8.3-8.azl3 as a component of Azure Linux 3.0",
          "product_id": "17084-3"
        },
        "product_reference": "3",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 gnutls 0:3.8.3-8.azl3 as a component of Azure Linux 3.0",
          "product_id": "20911-17084"
        },
        "product_reference": "20911",
        "relates_to_product_reference": "17084"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-3832",
      "cwe": {
        "id": "CWE-179",
        "name": "Incorrect Behavior Order: Early Validation"
      },
      "notes": [
        {
          "category": "general",
          "text": "redhat",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "fixed": [
          "21391-17084",
          "20911-17084"
        ],
        "known_affected": [
          "17084-1",
          "17084-3"
        ],
        "under_investigation": [
          "17086-2"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2026-3832 Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response - VEX",
          "url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-3832.json"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-07T01:11:00.000Z",
          "details": "0:3.8.3-11.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
          "product_ids": [
            "17084-1"
          ],
          "url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
        },
        {
          "category": "vendor_fix",
          "date": "2026-05-07T01:11:00.000Z",
          "details": "0:3.8.3-10.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
          "product_ids": [
            "17084-3"
          ],
          "url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "environmentalsScore": 0.0,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 3.7,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "17084-1",
            "17084-3"
          ]
        }
      ],
      "title": "Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response"
    }
  ]
}

RHSA-2026:13274

Vulnerability from csaf_redhat - Published: 2026-05-02 22:26 - Updated: 2026-06-16 21:42

Summary

Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

Severity

Important

Notes

Topic: An update for Red Hat Hardened Images RPMs is now available.

Details: This update includes the following RPMs: gnutls: * gnutls-3.8.13-1.hum1 (aarch64, x86_64) * gnutls-c++-3.8.13-1.hum1 (aarch64, x86_64) * gnutls-dane-3.8.13-1.hum1 (aarch64, x86_64) * gnutls-devel-3.8.13-1.hum1 (aarch64, x86_64) * gnutls-fips-3.8.13-1.hum1 (aarch64, x86_64) * gnutls-utils-3.8.13-1.hum1 (aarch64, x86_64) * mingw32-gnutls-3.8.13-1.hum1 (noarch) * mingw64-gnutls-3.8.13-1.hum1 (noarch) * gnutls-3.8.13-1.hum1.src (src)

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2026-3832

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-179 - Incorrect Behavior Order: Early Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2026-3833

A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constraints within `excludedSubtrees` or `permittedSubtrees`. A remote attacker can exploit this by crafting a leaf certificate with casing differences in the Subject Alternative Name (SAN), leading to a policy bypass where a certificate that should be rejected is instead accepted. This could result in unauthorized access or information disclosure.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-178 - Improper Handling of Case Sensitivity

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-33845

A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33846

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in merge_handshake_packet() where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the message_length field remains consistent across all fragments of the same logical message. An attacker can exploit this by sending crafted DTLS fragments with conflicting message_length values, causing the implementation to allocate a buffer based on a smaller initial fragment and subsequently write beyond its bounds using larger, inconsistent fragments. Because the merge operation does not enforce proper bounds checking against the allocated buffer size, this results in an out-of-bounds write on the heap. The vulnerability is remotely exploitable without authentication via the DTLS handshake path and can lead to application crashes or potential memory corruption.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-130 - Improper Handling of Length Parameter Inconsistency

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-42009

A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequence numbers. This could lead to unstable packet ordering or undefined behavior, resulting in a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-475 - Undefined Behavior for Input to API

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-42010

A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process.

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

CWE-170 - Improper Null Termination

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-42011

A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate validation. This bypass could lead to the acceptance of invalid certificates, potentially enabling spoofing or man-in-the-middle attacks against affected systems.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Hardened Images:gnutls-main@aarch64	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@noarch	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@src	—	Vendor Fix fix
Unresolved product id: Red Hat Hardened Images:gnutls-main@x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

47 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:13274	self
https://images.redhat.com/	external
https://access.redhat.com/security/cve/CVE-2026-33845	external
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/cve/CVE-2026-3833	external
https://access.redhat.com/security/cve/CVE-2026-3832	external
https://access.redhat.com/security/cve/CVE-2026-33846	external
https://access.redhat.com/security/cve/CVE-2026-42014	external
https://access.redhat.com/security/cve/CVE-2026-42013	external
https://access.redhat.com/security/cve/CVE-2026-42012	external
https://access.redhat.com/security/cve/CVE-2026-42011	external
https://access.redhat.com/security/cve/CVE-2026-42010	external
https://access.redhat.com/security/cve/CVE-2026-42009	external
https://access.redhat.com/security/cve/CVE-2026-5260	external
https://access.redhat.com/security/cve/CVE-2026-42015	external
https://access.redhat.com/security/cve/CVE-2026-5419	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-3832	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445762	external
https://www.cve.org/CVERecord?id=CVE-2026-3832	external
https://nvd.nist.gov/vuln/detail/CVE-2026-3832	external
https://gitlab.com/gnutls/gnutls/-/issues/1801	external
https://access.redhat.com/security/cve/CVE-2026-3833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445763	external
https://www.cve.org/CVERecord?id=CVE-2026-3833	external
https://nvd.nist.gov/vuln/detail/CVE-2026-3833	external
https://gitlab.com/gnutls/gnutls/-/issues/1803	external
https://access.redhat.com/security/cve/CVE-2026-33845	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450624	external
https://www.cve.org/CVERecord?id=CVE-2026-33845	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33845	external
https://access.redhat.com/security/cve/CVE-2026-33846	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450625	external
https://www.cve.org/CVERecord?id=CVE-2026-33846	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33846	external
https://access.redhat.com/security/cve/CVE-2026-42009	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467279	external
https://www.cve.org/CVERecord?id=CVE-2026-42009	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42009	external
https://access.redhat.com/security/cve/CVE-2026-42010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467289	external
https://www.cve.org/CVERecord?id=CVE-2026-42010	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42010	external
https://access.redhat.com/security/cve/CVE-2026-42011	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467437	external
https://www.cve.org/CVERecord?id=CVE-2026-42011	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42011	external

Acknowledgments

AISLE Research Team Joshua Rogers

Stella Haruto Kimura

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for Red Hat Hardened Images RPMs is now available.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "This update includes the following RPMs:\n\ngnutls:\n  * gnutls-3.8.13-1.hum1 (aarch64, x86_64)\n  * gnutls-c++-3.8.13-1.hum1 (aarch64, x86_64)\n  * gnutls-dane-3.8.13-1.hum1 (aarch64, x86_64)\n  * gnutls-devel-3.8.13-1.hum1 (aarch64, x86_64)\n  * gnutls-fips-3.8.13-1.hum1 (aarch64, x86_64)\n  * gnutls-utils-3.8.13-1.hum1 (aarch64, x86_64)\n  * mingw32-gnutls-3.8.13-1.hum1 (noarch)\n  * mingw64-gnutls-3.8.13-1.hum1 (noarch)\n  * gnutls-3.8.13-1.hum1.src (src)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:13274",
        "url": "https://access.redhat.com/errata/RHSA-2026:13274"
      },
      {
        "category": "external",
        "summary": "https://images.redhat.com/",
        "url": "https://images.redhat.com/"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33845",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33845"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-3833",
        "url": "https://access.redhat.com/security/cve/CVE-2026-3833"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-3832",
        "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33846",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33846"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42014",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42014"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42013",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42013"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42012",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42012"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42011",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42011"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42010",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42010"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42009",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42009"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-5260",
        "url": "https://access.redhat.com/security/cve/CVE-2026-5260"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42015",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42015"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-5419",
        "url": "https://access.redhat.com/security/cve/CVE-2026-5419"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_13274.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
    "tracking": {
      "current_release_date": "2026-06-16T21:42:51+00:00",
      "generator": {
        "date": "2026-06-16T21:42:51+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.0.0"
        }
      },
      "id": "RHSA-2026:13274",
      "initial_release_date": "2026-05-02T22:26:22+00:00",
      "revision_history": [
        {
          "date": "2026-05-02T22:26:22+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-24T00:51:22+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-16T21:42:51+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Hardened Images",
                "product": {
                  "name": "Red Hat Hardened Images",
                  "product_id": "Red Hat Hardened Images",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:hummingbird:1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Hardened Images"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-main@aarch64",
                "product": {
                  "name": "gnutls-main@aarch64",
                  "product_id": "gnutls-main@aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.13-1.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-main@src",
                "product": {
                  "name": "gnutls-main@src",
                  "product_id": "gnutls-main@src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.13-1.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-main@x86_64",
                "product": {
                  "name": "gnutls-main@x86_64",
                  "product_id": "gnutls-main@x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.13-1.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-main@noarch",
                "product": {
                  "name": "gnutls-main@noarch",
                  "product_id": "gnutls-main@noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/mingw32-gnutls@3.8.13-1.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-main@aarch64 as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:gnutls-main@aarch64"
        },
        "product_reference": "gnutls-main@aarch64",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-main@noarch as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:gnutls-main@noarch"
        },
        "product_reference": "gnutls-main@noarch",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-main@src as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:gnutls-main@src"
        },
        "product_reference": "gnutls-main@src",
        "relates_to_product_reference": "Red Hat Hardened Images"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-main@x86_64 as a component of Red Hat Hardened Images",
          "product_id": "Red Hat Hardened Images:gnutls-main@x86_64"
        },
        "product_reference": "gnutls-main@x86_64",
        "relates_to_product_reference": "Red Hat Hardened Images"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-3832",
      "cwe": {
        "id": "CWE-179",
        "name": "Incorrect Behavior Order: Early Validation"
      },
      "discovery_date": "2026-03-09T13:41:32.810000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445762"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue has a LOW impact. A flaw in gnutls\u0027 OCSP stapling implementation allows a client with OCSP verification enabled to accept a revoked server certificate. This occurs when a multi-record OCSP response is stapled, and the client incorrectly reads the certificate status from an unrelated record, leading to an order-dependent acceptance of a revoked certificate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445762",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445762"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-3832",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1801",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
        }
      ],
      "release_date": "2026-04-30T17:29:25.738000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response"
    },
    {
      "cve": "CVE-2026-3833",
      "cwe": {
        "id": "CWE-178",
        "name": "Improper Handling of Case Sensitivity"
      },
      "discovery_date": "2026-03-09T14:02:09.783000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445763"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constraints within `excludedSubtrees` or `permittedSubtrees`. A remote attacker can exploit this by crafting a leaf certificate with casing differences in the Subject Alternative Name (SAN), leading to a policy bypass where a certificate that should be rejected is instead accepted. This could result in unauthorized access or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue is particularly important because it affects the correct enforcement of X.509 nameConstraints, which are specifically designed to limit the authority of subordinate CAs. In GnuTLS, the use of case-sensitive comparisons (memcmp) for dNSName and the domain portion of rfc822Name violates the case-insensitive matching requirements defined in RFC 5280 and RFC 4343. As a result, a constrained subordinate CA can bypass excludedSubtrees or permittedSubtrees restrictions simply by changing the letter casing of a domain in the SAN (e.g., ExAmPlE.CoM vs example.com). Since nameConstraints are often the only mechanism enforcing domain boundaries in delegated PKI hierarchies, this flaw effectively allows a malicious or compromised sub-CA to issue certificates for domains that should be cryptographically prohibited, enabling unauthorized certificate validation and potential TLS impersonation of restricted services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445763",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445763"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-3833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1803",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1803"
        }
      ],
      "release_date": "2026-04-30T17:26:28.969000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison"
    },
    {
      "cve": "CVE-2026-33845",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "discovery_date": "2026-03-24T05:35:59.740000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450624"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue marked as Important severity due to its remote, pre-authentication reachability and its impact on a critical DTLS handshake parsing path. The vulnerability can be triggered by an unauthenticated attacker sending crafted DTLS handshake fragments, requiring no prior access or interaction. It leads to an out-of-bounds read caused by an integer underflow in fragment reassembly, operating entirely on attacker-controlled input. Such flaws in low-level protocol parsing are particularly serious, as they may result in disclosure of sensitive process memory, including cryptographic or session-related data, and can also cause reliable application crashes leading to denial of service. Given that DTLS is commonly used in network-facing services such as VPNs and real-time communication systems, the exposure surface is broad. The combination of unauthenticated remote exploitation, memory safety violation, and potential confidentiality and availability impact justifies classifying this issue as high severity rather than moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33845"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450624",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450624"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33845",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33845"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33845",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33845"
        }
      ],
      "release_date": "2026-04-30T17:28:41.473000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment"
    },
    {
      "cve": "CVE-2026-33846",
      "cwe": {
        "id": "CWE-130",
        "name": "Improper Handling of Length Parameter Inconsistency"
      },
      "discovery_date": "2026-03-24T05:38:09.899000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450625"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in merge_handshake_packet() where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the message_length field remains consistent across all fragments of the same logical message. An attacker can exploit this by sending crafted DTLS fragments with conflicting message_length values, causing the implementation to allocate a buffer based on a smaller initial fragment and subsequently write beyond its bounds using larger, inconsistent fragments. Because the merge operation does not enforce proper bounds checking against the allocated buffer size, this results in an out-of-bounds write on the heap. The vulnerability is remotely exploitable without authentication via the DTLS handshake path and can lead to application crashes or potential memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability should be classified as an important flaw rather than moderate because it exposes a pre-authentication, remotely reachable heap buffer overflow in the DTLS handshake processing path, which is part of the core protocol handling logic and commonly exposed in network-facing services. The flaw enables an attacker to inject controlled data at attacker-chosen offsets and sizes beyond allocated heap boundaries by exploiting inconsistent message_length handling across fragments, effectively creating a constrained but meaningful heap write primitive. Unlike benign memory safety bugs, this condition is deterministically triggerable with a small number of crafted packets and no environmental dependencies for denial-of-service, and it targets a long-lived parsing state where memory corruption can affect adjacent heap structures. Even if reliable code execution requires additional heap manipulation or layout knowledge, the combination of remote reachability, lack of authentication, controlled memory corruption capability, and trivial crashability significantly elevates the risk profile beyond moderate severity. In real-world deployments, such primitives are often sufficient to enable heap grooming and exploitation chains, particularly in services that repeatedly process attacker-controlled input, making this a materially important security flaw.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33846"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450625",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450625"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33846",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33846"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33846",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33846"
        }
      ],
      "release_date": "2026-05-04T08:53:59.249000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42009",
      "cwe": {
        "id": "CWE-475",
        "name": "Undefined Behavior for Input to API"
      },
      "discovery_date": "2026-05-06T16:32:32.382000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467279"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequence numbers. This could lead to unstable packet ordering or undefined behavior, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The impact for this flaw has been downgraded on Red Hat Enterprise Linux due to the following reason:\n\n- The number of elements passed to the vulnerable function at runtime is known and is at most 6 and the element size is sufficiently small. glibc\u2019s qsort implementation will not exercise the quick sort code path, which would otherwise cause an infloop or out-of-bound write.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42009"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467279",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467279"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42009",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42009"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42009",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42009"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42010",
      "cwe": {
        "id": "CWE-170",
        "name": "Improper Null Termination"
      },
      "discovery_date": "2026-05-06T16:57:37.044000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467289"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest\u2013Shamir\u2013Adleman \u2013 Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Authentication Bypass via NUL Character in Username",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467289",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467289"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42010"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: gnutls: Authentication Bypass via NUL Character in Username"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Haruto Kimura"
          ],
          "organization": "Stella"
        }
      ],
      "cve": "CVE-2026-42011",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2026-05-06T19:06:25.319000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467437"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate validation. This bypass could lead to the acceptance of invalid certificates, potentially enabling spoofing or man-in-the-middle attacks against affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Security bypass due to incorrect name constraint handling",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Hardened Images:gnutls-main@aarch64",
          "Red Hat Hardened Images:gnutls-main@noarch",
          "Red Hat Hardened Images:gnutls-main@src",
          "Red Hat Hardened Images:gnutls-main@x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42011"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467437",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467437"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42011",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42011"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42011",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42011"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-02T22:26:22+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
          "product_ids": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13274"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat Hardened Images:gnutls-main@aarch64",
            "Red Hat Hardened Images:gnutls-main@noarch",
            "Red Hat Hardened Images:gnutls-main@src",
            "Red Hat Hardened Images:gnutls-main@x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Security bypass due to incorrect name constraint handling"
    }
  ]
}

RHSA-2026:20612

Vulnerability from csaf_redhat - Published: 2026-05-26 07:04 - Updated: 2026-06-16 21:34

Summary

Red Hat Security Advisory: gnutls security update

Severity

Important

Notes

Topic: An update for gnutls is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS. Security Fix(es): * gnutls: Fix qsort comparator in DTLS reassembly (CVE-2026-42009) * gnutls: Fix crashing on an underflow with a DTLS datagram (CVE-2026-33845) * gnutls: Fix RSA-PSK identity truncation (CVE-2026-42010) * gnutls: Fix case-sensitivity of domain name comparison in name constraints (CVE-2026-3833) * gnutls: Fix intersecting empty name constraints (CVE-2026-42011) * gnutls: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly (CVE-2026-33846) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-3832

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-179 - Incorrect Behavior Order: Early Validation

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2026-3833

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-178 - Improper Handling of Case Sensitivity

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-5260

A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS#11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

CWE-1284 - Improper Validation of Specified Quantity in Input

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-5419

A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of information disclosure.

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-208 - Observable Timing Discrepancy

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2026-33845

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33846

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-130 - Improper Handling of Length Parameter Inconsistency

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-42009

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-475 - Undefined Behavior for Input to API

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-42010

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

CWE-170 - Improper Null Termination

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-42011

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42012

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier (URI) or Service (SRV) Subject Alternative Names (SANs). This could cause the certificate validation process to incorrectly fall back to checking DNS hostnames against the Common Name (CN), potentially allowing the attacker to spoof legitimate services or intercept sensitive information.

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42013

A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could cause the validation process to incorrectly fall back to checking the Common Name (CN) field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to spoofing or man-in-the-middle attacks.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

CWE-1284 - Improper Validation of Specified Quantity in Input

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42014

A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protected authentication path.

6.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWE-825 - Expired Pointer Dereference

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42015

A flaw was found in gnutls. An off-by-one error exists in the PKCS#12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS#12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of service (DoS) or potentially other unspecified impacts.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-193 - Off-by-one Error

Affected products

Fixed 100 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:20612	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445763	external
https://bugzilla.redhat.com/show_bug.cgi?id=2450624	external
https://bugzilla.redhat.com/show_bug.cgi?id=2450625	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467279	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467289	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467437	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467678	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-3832	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445762	external
https://www.cve.org/CVERecord?id=CVE-2026-3832	external
https://nvd.nist.gov/vuln/detail/CVE-2026-3832	external
https://gitlab.com/gnutls/gnutls/-/issues/1801	external
https://access.redhat.com/security/cve/CVE-2026-3833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445763	external
https://www.cve.org/CVERecord?id=CVE-2026-3833	external
https://nvd.nist.gov/vuln/detail/CVE-2026-3833	external
https://gitlab.com/gnutls/gnutls/-/issues/1803	external
https://access.redhat.com/security/cve/CVE-2026-5260	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467450	external
https://www.cve.org/CVERecord?id=CVE-2026-5260	external
https://nvd.nist.gov/vuln/detail/CVE-2026-5260	external
https://access.redhat.com/security/cve/CVE-2026-5419	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467686	external
https://www.cve.org/CVERecord?id=CVE-2026-5419	external
https://nvd.nist.gov/vuln/detail/CVE-2026-5419	external
https://access.redhat.com/security/cve/CVE-2026-33845	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450624	external
https://www.cve.org/CVERecord?id=CVE-2026-33845	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33845	external
https://access.redhat.com/security/cve/CVE-2026-33846	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450625	external
https://www.cve.org/CVERecord?id=CVE-2026-33846	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33846	external
https://access.redhat.com/security/cve/CVE-2026-42009	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467279	external
https://www.cve.org/CVERecord?id=CVE-2026-42009	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42009	external
https://access.redhat.com/security/cve/CVE-2026-42010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467289	external
https://www.cve.org/CVERecord?id=CVE-2026-42010	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42010	external
https://access.redhat.com/security/cve/CVE-2026-42011	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467437	external
https://www.cve.org/CVERecord?id=CVE-2026-42011	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42011	external
https://access.redhat.com/security/cve/CVE-2026-42012	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467441	external
https://www.cve.org/CVERecord?id=CVE-2026-42012	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42012	external
https://access.redhat.com/security/cve/CVE-2026-42013	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467448	external
https://www.cve.org/CVERecord?id=CVE-2026-42013	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42013	external
https://access.redhat.com/security/cve/CVE-2026-42014	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467451	external
https://www.cve.org/CVERecord?id=CVE-2026-42014	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42014	external
https://gitlab.com/gnutls/gnutls/-/issues/1766	external
https://www.gnutls.org/security-new.html#GNUTLS-S…	external
https://access.redhat.com/security/cve/CVE-2026-42015	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467678	external
https://www.cve.org/CVERecord?id=CVE-2026-42015	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42015	external

Acknowledgments

AISLE Research Team Joshua Rogers

Stony Brook University Doria Tang

Stella Haruto Kimura

1Seal Oleh Konko

Luigino Camastra

Zou Dikai

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for gnutls is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of\nModerate. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library,\nwhich implements cryptographic algorithms and protocols such as SSL, TLS, and\nDTLS.\n\nSecurity Fix(es):\n\n* gnutls: Fix qsort comparator in DTLS reassembly (CVE-2026-42009)\n* gnutls: Fix crashing on an underflow with a DTLS datagram\n(CVE-2026-33845)\n* gnutls: Fix RSA-PSK identity truncation (CVE-2026-42010)\n* gnutls: Fix case-sensitivity of domain name comparison in name\nconstraints (CVE-2026-3833)\n* gnutls: Fix intersecting empty name constraints (CVE-2026-42011)\n* gnutls: Denial of Service via heap buffer overflow in DTLS handshake\nfragment reassembly (CVE-2026-33846)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:20612",
        "url": "https://access.redhat.com/errata/RHSA-2026:20612"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445763",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445763"
      },
      {
        "category": "external",
        "summary": "2450624",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450624"
      },
      {
        "category": "external",
        "summary": "2450625",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450625"
      },
      {
        "category": "external",
        "summary": "2467279",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467279"
      },
      {
        "category": "external",
        "summary": "2467289",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467289"
      },
      {
        "category": "external",
        "summary": "2467437",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467437"
      },
      {
        "category": "external",
        "summary": "2467678",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467678"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_20612.json"
      }
    ],
    "title": "Red Hat Security Advisory: gnutls security update",
    "tracking": {
      "current_release_date": "2026-06-16T21:34:00+00:00",
      "generator": {
        "date": "2026-06-16T21:34:00+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.0.0"
        }
      },
      "id": "RHSA-2026:20612",
      "initial_release_date": "2026-05-26T07:04:55+00:00",
      "revision_history": [
        {
          "date": "2026-05-26T07:04:55+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-26T07:04:55+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-16T21:34:00+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.8.0.Z.MAIN.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux BaseOS (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux BaseOS (v. 9)",
                  "product_id": "BaseOS-9.8.0.Z.MAIN.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-c++-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-dane-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-devel-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el9_8.x86_64",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el9_8.x86_64",
                  "product_id": "gnutls-utils-0:3.8.10-4.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el9_8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-c++-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-dane-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el9_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el9_8.i686",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el9_8.i686",
                  "product_id": "gnutls-devel-0:3.8.10-4.el9_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el9_8?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-c++-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-dane-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-devel-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el9_8.s390x",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el9_8.s390x",
                  "product_id": "gnutls-utils-0:3.8.10-4.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el9_8?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el9_8.src",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el9_8.src",
                  "product_id": "gnutls-0:3.8.10-4.el9_8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el9_8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-c++-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-dane-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-devel-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el9_8.aarch64",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el9_8.aarch64",
                  "product_id": "gnutls-utils-0:3.8.10-4.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el9_8?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
                  "product_id": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el9_8?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.src",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.src",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
          "product_id": "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
        "relates_to_product_reference": "BaseOS-9.8.0.Z.MAIN.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-3832",
      "cwe": {
        "id": "CWE-179",
        "name": "Incorrect Behavior Order: Early Validation"
      },
      "discovery_date": "2026-03-09T13:41:32.810000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445762"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue has a LOW impact. A flaw in gnutls\u0027 OCSP stapling implementation allows a client with OCSP verification enabled to accept a revoked server certificate. This occurs when a multi-record OCSP response is stapled, and the client incorrectly reads the certificate status from an unrelated record, leading to an order-dependent acceptance of a revoked certificate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445762",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445762"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-3832",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1801",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
        }
      ],
      "release_date": "2026-04-30T17:29:25.738000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response"
    },
    {
      "cve": "CVE-2026-3833",
      "cwe": {
        "id": "CWE-178",
        "name": "Improper Handling of Case Sensitivity"
      },
      "discovery_date": "2026-03-09T14:02:09.783000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445763"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constraints within `excludedSubtrees` or `permittedSubtrees`. A remote attacker can exploit this by crafting a leaf certificate with casing differences in the Subject Alternative Name (SAN), leading to a policy bypass where a certificate that should be rejected is instead accepted. This could result in unauthorized access or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue is particularly important because it affects the correct enforcement of X.509 nameConstraints, which are specifically designed to limit the authority of subordinate CAs. In GnuTLS, the use of case-sensitive comparisons (memcmp) for dNSName and the domain portion of rfc822Name violates the case-insensitive matching requirements defined in RFC 5280 and RFC 4343. As a result, a constrained subordinate CA can bypass excludedSubtrees or permittedSubtrees restrictions simply by changing the letter casing of a domain in the SAN (e.g., ExAmPlE.CoM vs example.com). Since nameConstraints are often the only mechanism enforcing domain boundaries in delegated PKI hierarchies, this flaw effectively allows a malicious or compromised sub-CA to issue certificates for domains that should be cryptographically prohibited, enabling unauthorized certificate validation and potential TLS impersonation of restricted services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445763",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445763"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-3833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1803",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1803"
        }
      ],
      "release_date": "2026-04-30T17:26:28.969000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-5260",
      "cwe": {
        "id": "CWE-1284",
        "name": "Improper Validation of Specified Quantity in Input"
      },
      "discovery_date": "2026-05-06T19:50:31.302000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467450"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS#11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Information disclosure via heap overread in RSA key exchange",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5260"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467450",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467450"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5260",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5260"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5260",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5260"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Information disclosure via heap overread in RSA key exchange"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Doria Tang"
          ],
          "organization": "Stony Brook University"
        }
      ],
      "cve": "CVE-2026-5419",
      "cwe": {
        "id": "CWE-208",
        "name": "Observable Timing Discrepancy"
      },
      "discovery_date": "2026-05-07T11:02:44.331000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467686"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5419"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467686",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467686"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5419",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5419"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5419",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5419"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal"
    },
    {
      "cve": "CVE-2026-33845",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "discovery_date": "2026-03-24T05:35:59.740000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450624"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue marked as Important severity due to its remote, pre-authentication reachability and its impact on a critical DTLS handshake parsing path. The vulnerability can be triggered by an unauthenticated attacker sending crafted DTLS handshake fragments, requiring no prior access or interaction. It leads to an out-of-bounds read caused by an integer underflow in fragment reassembly, operating entirely on attacker-controlled input. Such flaws in low-level protocol parsing are particularly serious, as they may result in disclosure of sensitive process memory, including cryptographic or session-related data, and can also cause reliable application crashes leading to denial of service. Given that DTLS is commonly used in network-facing services such as VPNs and real-time communication systems, the exposure surface is broad. The combination of unauthenticated remote exploitation, memory safety violation, and potential confidentiality and availability impact justifies classifying this issue as high severity rather than moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33845"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450624",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450624"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33845",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33845"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33845",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33845"
        }
      ],
      "release_date": "2026-04-30T17:28:41.473000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment"
    },
    {
      "cve": "CVE-2026-33846",
      "cwe": {
        "id": "CWE-130",
        "name": "Improper Handling of Length Parameter Inconsistency"
      },
      "discovery_date": "2026-03-24T05:38:09.899000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450625"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in merge_handshake_packet() where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the message_length field remains consistent across all fragments of the same logical message. An attacker can exploit this by sending crafted DTLS fragments with conflicting message_length values, causing the implementation to allocate a buffer based on a smaller initial fragment and subsequently write beyond its bounds using larger, inconsistent fragments. Because the merge operation does not enforce proper bounds checking against the allocated buffer size, this results in an out-of-bounds write on the heap. The vulnerability is remotely exploitable without authentication via the DTLS handshake path and can lead to application crashes or potential memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability should be classified as an important flaw rather than moderate because it exposes a pre-authentication, remotely reachable heap buffer overflow in the DTLS handshake processing path, which is part of the core protocol handling logic and commonly exposed in network-facing services. The flaw enables an attacker to inject controlled data at attacker-chosen offsets and sizes beyond allocated heap boundaries by exploiting inconsistent message_length handling across fragments, effectively creating a constrained but meaningful heap write primitive. Unlike benign memory safety bugs, this condition is deterministically triggerable with a small number of crafted packets and no environmental dependencies for denial-of-service, and it targets a long-lived parsing state where memory corruption can affect adjacent heap structures. Even if reliable code execution requires additional heap manipulation or layout knowledge, the combination of remote reachability, lack of authentication, controlled memory corruption capability, and trivial crashability significantly elevates the risk profile beyond moderate severity. In real-world deployments, such primitives are often sufficient to enable heap grooming and exploitation chains, particularly in services that repeatedly process attacker-controlled input, making this a materially important security flaw.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33846"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450625",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450625"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33846",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33846"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33846",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33846"
        }
      ],
      "release_date": "2026-05-04T08:53:59.249000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42009",
      "cwe": {
        "id": "CWE-475",
        "name": "Undefined Behavior for Input to API"
      },
      "discovery_date": "2026-05-06T16:32:32.382000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467279"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequence numbers. This could lead to unstable packet ordering or undefined behavior, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The impact for this flaw has been downgraded on Red Hat Enterprise Linux due to the following reason:\n\n- The number of elements passed to the vulnerable function at runtime is known and is at most 6 and the element size is sufficiently small. glibc\u2019s qsort implementation will not exercise the quick sort code path, which would otherwise cause an infloop or out-of-bound write.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42009"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467279",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467279"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42009",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42009"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42009",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42009"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42010",
      "cwe": {
        "id": "CWE-170",
        "name": "Improper Null Termination"
      },
      "discovery_date": "2026-05-06T16:57:37.044000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467289"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest\u2013Shamir\u2013Adleman \u2013 Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Authentication Bypass via NUL Character in Username",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42010"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467289",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467289"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42010",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42010"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42010",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42010"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: gnutls: Authentication Bypass via NUL Character in Username"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Haruto Kimura"
          ],
          "organization": "Stella"
        }
      ],
      "cve": "CVE-2026-42011",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2026-05-06T19:06:25.319000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467437"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly ignored when previous Certificate Authorities (CAs) only had excluded name constraints. A remote attacker could exploit this to bypass critical name constraint checks during certificate validation. This bypass could lead to the acceptance of invalid certificates, potentially enabling spoofing or man-in-the-middle attacks against affected systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Security bypass due to incorrect name constraint handling",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42011"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467437",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467437"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42011",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42011"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42011",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42011"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Security bypass due to incorrect name constraint handling"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Oleh Konko"
          ],
          "organization": "1Seal"
        }
      ],
      "cve": "CVE-2026-42012",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2026-05-06T19:16:02.753000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467441"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier (URI) or Service (SRV) Subject Alternative Names (SANs). This could cause the certificate validation process to incorrectly fall back to checking DNS hostnames against the Common Name (CN), potentially allowing the attacker to spoof legitimate services or intercept sensitive information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42012"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467441",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467441"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42012",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42012"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42012",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42012"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Haruto Kimura"
          ],
          "organization": "Stella"
        },
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42013",
      "cwe": {
        "id": "CWE-1284",
        "name": "Improper Validation of Specified Quantity in Input"
      },
      "discovery_date": "2026-05-06T19:47:00.134000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467448"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could cause the validation process to incorrectly fall back to checking the Common Name (CN) field. This could allow a remote attacker to bypass proper certificate validation, potentially leading to spoofing or man-in-the-middle attacks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42013"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467448",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467448"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42013"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42013",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42013"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Luigino Camastra"
          ]
        },
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42014",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2026-05-06T19:51:54.069000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protected authentication path.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42014"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42014",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42014"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42014",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42014"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1766",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1766"
        },
        {
          "category": "external",
          "summary": "https://www.gnutls.org/security-new.html#GNUTLS-SA-2026-04-29-9",
          "url": "https://www.gnutls.org/security-new.html#GNUTLS-SA-2026-04-29-9"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Zou Dikai"
          ]
        }
      ],
      "cve": "CVE-2026-42015",
      "cwe": {
        "id": "CWE-193",
        "name": "Off-by-one Error"
      },
      "discovery_date": "2026-05-07T10:50:28.379000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467678"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. An off-by-one error exists in the PKCS#12 bag element bounds check. This vulnerability allows an remote attacker to write past the internal array of a PKCS#12 bag when appending to a bag that already contains 32 elements. This memory corruption could lead to a denial of service (DoS) or potentially other unspecified impacts.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
          "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42015"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467678",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467678"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42015",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42015"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42015",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42015"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T07:04:55+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20612"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.src",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-c++-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-dane-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debuginfo-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-debugsource-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-devel-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-0:3.8.10-4.el9_8.x86_64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.aarch64",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.i686",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.ppc64le",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.s390x",
            "BaseOS-9.8.0.Z.MAIN.EUS:gnutls-utils-debuginfo-0:3.8.10-4.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling"
    }
  ]
}

RHSA-2026:20613

Vulnerability from csaf_redhat - Published: 2026-05-26 06:51 - Updated: 2026-06-16 21:33

Summary

Red Hat Security Advisory: gnutls security update

Severity

Important

Notes

Topic: An update for gnutls is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2026-3832

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-179 - Incorrect Behavior Order: Early Validation

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Low

CVE-2026-3833

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-178 - Improper Handling of Case Sensitivity

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-5260

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

CWE-1284 - Improper Validation of Specified Quantity in Input

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-5419

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-208 - Observable Timing Discrepancy

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Low

CVE-2026-33845

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33846

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-130 - Improper Handling of Length Parameter Inconsistency

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-42009

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-475 - Undefined Behavior for Input to API

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-42010

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

CWE-170 - Improper Null Termination

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-42011

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42012

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42013

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

CWE-1284 - Improper Validation of Specified Quantity in Input

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42014

6.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWE-825 - Expired Pointer Dereference

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2026-42015

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-193 - Off-by-one Error

Affected products

Fixed 90 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Moderate

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:20613	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445763	external
https://bugzilla.redhat.com/show_bug.cgi?id=2450624	external
https://bugzilla.redhat.com/show_bug.cgi?id=2450625	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467279	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467289	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467437	external
https://bugzilla.redhat.com/show_bug.cgi?id=2467678	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-3832	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445762	external
https://www.cve.org/CVERecord?id=CVE-2026-3832	external
https://nvd.nist.gov/vuln/detail/CVE-2026-3832	external
https://gitlab.com/gnutls/gnutls/-/issues/1801	external
https://access.redhat.com/security/cve/CVE-2026-3833	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445763	external
https://www.cve.org/CVERecord?id=CVE-2026-3833	external
https://nvd.nist.gov/vuln/detail/CVE-2026-3833	external
https://gitlab.com/gnutls/gnutls/-/issues/1803	external
https://access.redhat.com/security/cve/CVE-2026-5260	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467450	external
https://www.cve.org/CVERecord?id=CVE-2026-5260	external
https://nvd.nist.gov/vuln/detail/CVE-2026-5260	external
https://access.redhat.com/security/cve/CVE-2026-5419	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467686	external
https://www.cve.org/CVERecord?id=CVE-2026-5419	external
https://nvd.nist.gov/vuln/detail/CVE-2026-5419	external
https://access.redhat.com/security/cve/CVE-2026-33845	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450624	external
https://www.cve.org/CVERecord?id=CVE-2026-33845	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33845	external
https://access.redhat.com/security/cve/CVE-2026-33846	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450625	external
https://www.cve.org/CVERecord?id=CVE-2026-33846	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33846	external
https://access.redhat.com/security/cve/CVE-2026-42009	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467279	external
https://www.cve.org/CVERecord?id=CVE-2026-42009	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42009	external
https://access.redhat.com/security/cve/CVE-2026-42010	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467289	external
https://www.cve.org/CVERecord?id=CVE-2026-42010	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42010	external
https://access.redhat.com/security/cve/CVE-2026-42011	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467437	external
https://www.cve.org/CVERecord?id=CVE-2026-42011	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42011	external
https://access.redhat.com/security/cve/CVE-2026-42012	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467441	external
https://www.cve.org/CVERecord?id=CVE-2026-42012	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42012	external
https://access.redhat.com/security/cve/CVE-2026-42013	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467448	external
https://www.cve.org/CVERecord?id=CVE-2026-42013	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42013	external
https://access.redhat.com/security/cve/CVE-2026-42014	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467451	external
https://www.cve.org/CVERecord?id=CVE-2026-42014	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42014	external
https://gitlab.com/gnutls/gnutls/-/issues/1766	external
https://www.gnutls.org/security-new.html#GNUTLS-S…	external
https://access.redhat.com/security/cve/CVE-2026-42015	self
https://bugzilla.redhat.com/show_bug.cgi?id=2467678	external
https://www.cve.org/CVERecord?id=CVE-2026-42015	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42015	external

Acknowledgments

AISLE Research Team Joshua Rogers

Stony Brook University Doria Tang

Stella Haruto Kimura

1Seal Oleh Konko

Luigino Camastra

Zou Dikai

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for gnutls is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of\nModerate. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library,\nwhich implements cryptographic algorithms and protocols such as SSL, TLS, and\nDTLS.\n\nSecurity Fix(es):\n\n* gnutls: Fix qsort comparator in DTLS reassembly (CVE-2026-42009)\n* gnutls: Fix crashing on an underflow with a DTLS datagram (CVE-2026-33845)\n* gnutls: Fix RSA-PSK identity truncation (CVE-2026-42010)\n* gnutls: Fix case-sensitivity of domain name comparison in name constraints (CVE-2026-3833)\n* gnutls: Fix intersecting empty name constraints (CVE-2026-42011)\n* gnutls: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly (CVE-2026-33846)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:20613",
        "url": "https://access.redhat.com/errata/RHSA-2026:20613"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445763",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445763"
      },
      {
        "category": "external",
        "summary": "2450624",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450624"
      },
      {
        "category": "external",
        "summary": "2450625",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450625"
      },
      {
        "category": "external",
        "summary": "2467279",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467279"
      },
      {
        "category": "external",
        "summary": "2467289",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467289"
      },
      {
        "category": "external",
        "summary": "2467437",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467437"
      },
      {
        "category": "external",
        "summary": "2467678",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467678"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_20613.json"
      }
    ],
    "title": "Red Hat Security Advisory: gnutls security update",
    "tracking": {
      "current_release_date": "2026-06-16T21:33:59+00:00",
      "generator": {
        "date": "2026-06-16T21:33:59+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.0.0"
        }
      },
      "id": "RHSA-2026:20613",
      "initial_release_date": "2026-05-26T06:51:21+00:00",
      "revision_history": [
        {
          "date": "2026-05-26T06:51:21+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-26T06:51:21+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-16T21:33:59+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 10)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 10)",
                  "product_id": "AppStream-10.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:10.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux BaseOS (v. 10)",
                "product": {
                  "name": "Red Hat Enterprise Linux BaseOS (v. 10)",
                  "product_id": "BaseOS-10.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:10.2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-c++-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-dane-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-devel-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-fips-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-fips-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-fips-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-fips@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-utils-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el10_2.x86_64",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el10_2.x86_64",
                  "product_id": "gnutls-0:3.8.10-4.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el10_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-c++-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-dane-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-devel-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-fips-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-fips-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-fips-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-fips@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-utils-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el10_2.aarch64",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el10_2.aarch64",
                  "product_id": "gnutls-0:3.8.10-4.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el10_2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-fips@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el10_2.ppc64le",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el10_2.ppc64le",
                  "product_id": "gnutls-0:3.8.10-4.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el10_2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-c++-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-c++-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-c++-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-dane-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-dane-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-devel-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-devel-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-devel-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-devel@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-fips-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-fips-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-fips-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-fips@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-utils-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-utils-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debugsource@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-c%2B%2B-debuginfo@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-dane-debuginfo@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-debuginfo@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls-utils-debuginfo@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el10_2.s390x",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el10_2.s390x",
                  "product_id": "gnutls-0:3.8.10-4.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el10_2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnutls-0:3.8.10-4.el10_2.src",
                "product": {
                  "name": "gnutls-0:3.8.10-4.el10_2.src",
                  "product_id": "gnutls-0:3.8.10-4.el10_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnutls@3.8.10-4.el10_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.src",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.src as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.src",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-c++-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-dane-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-devel-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-devel-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-fips-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-fips-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-utils-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
          "product_id": "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        },
        "product_reference": "gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
        "relates_to_product_reference": "BaseOS-10.2.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-3832",
      "cwe": {
        "id": "CWE-179",
        "name": "Incorrect Behavior Order: Early Validation"
      },
      "discovery_date": "2026-03-09T13:41:32.810000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445762"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue has a LOW impact. A flaw in gnutls\u0027 OCSP stapling implementation allows a client with OCSP verification enabled to accept a revoked server certificate. This occurs when a multi-record OCSP response is stapled, and the client incorrectly reads the certificate status from an unrelated record, leading to an order-dependent acceptance of a revoked certificate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445762",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445762"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-3832",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3832"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1801",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1801"
        }
      ],
      "release_date": "2026-04-30T17:29:25.738000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response"
    },
    {
      "cve": "CVE-2026-3833",
      "cwe": {
        "id": "CWE-178",
        "name": "Improper Handling of Case Sensitivity"
      },
      "discovery_date": "2026-03-09T14:02:09.783000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445763"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constraints within `excludedSubtrees` or `permittedSubtrees`. A remote attacker can exploit this by crafting a leaf certificate with casing differences in the Subject Alternative Name (SAN), leading to a policy bypass where a certificate that should be rejected is instead accepted. This could result in unauthorized access or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue is particularly important because it affects the correct enforcement of X.509 nameConstraints, which are specifically designed to limit the authority of subordinate CAs. In GnuTLS, the use of case-sensitive comparisons (memcmp) for dNSName and the domain portion of rfc822Name violates the case-insensitive matching requirements defined in RFC 5280 and RFC 4343. As a result, a constrained subordinate CA can bypass excludedSubtrees or permittedSubtrees restrictions simply by changing the letter casing of a domain in the SAN (e.g., ExAmPlE.CoM vs example.com). Since nameConstraints are often the only mechanism enforcing domain boundaries in delegated PKI hierarchies, this flaw effectively allows a malicious or compromised sub-CA to issue certificates for domains that should be cryptographically prohibited, enabling unauthorized certificate validation and potential TLS impersonation of restricted services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445763",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445763"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-3833",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3833",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3833"
        },
        {
          "category": "external",
          "summary": "https://gitlab.com/gnutls/gnutls/-/issues/1803",
          "url": "https://gitlab.com/gnutls/gnutls/-/issues/1803"
        }
      ],
      "release_date": "2026-04-30T17:26:28.969000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-5260",
      "cwe": {
        "id": "CWE-1284",
        "name": "Improper Validation of Specified Quantity in Input"
      },
      "discovery_date": "2026-05-06T19:50:31.302000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467450"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS#11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Information disclosure via heap overread in RSA key exchange",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5260"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467450",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467450"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5260",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5260"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5260",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5260"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "gnutls: gnutls: Information disclosure via heap overread in RSA key exchange"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Doria Tang"
          ],
          "organization": "Stony Brook University"
        }
      ],
      "cve": "CVE-2026-5419",
      "cwe": {
        "id": "CWE-208",
        "name": "Observable Timing Discrepancy"
      },
      "discovery_date": "2026-05-07T11:02:44.331000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467686"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5419"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467686",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467686"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5419",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5419"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5419",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5419"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal"
    },
    {
      "cve": "CVE-2026-33845",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "discovery_date": "2026-03-24T05:35:59.740000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450624"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue marked as Important severity due to its remote, pre-authentication reachability and its impact on a critical DTLS handshake parsing path. The vulnerability can be triggered by an unauthenticated attacker sending crafted DTLS handshake fragments, requiring no prior access or interaction. It leads to an out-of-bounds read caused by an integer underflow in fragment reassembly, operating entirely on attacker-controlled input. Such flaws in low-level protocol parsing are particularly serious, as they may result in disclosure of sensitive process memory, including cryptographic or session-related data, and can also cause reliable application crashes leading to denial of service. Given that DTLS is commonly used in network-facing services such as VPNs and real-time communication systems, the exposure surface is broad. The combination of unauthenticated remote exploitation, memory safety violation, and potential confidentiality and availability impact justifies classifying this issue as high severity rather than moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33845"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450624",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450624"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33845",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33845"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33845",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33845"
        }
      ],
      "release_date": "2026-04-30T17:28:41.473000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment"
    },
    {
      "cve": "CVE-2026-33846",
      "cwe": {
        "id": "CWE-130",
        "name": "Improper Handling of Length Parameter Inconsistency"
      },
      "discovery_date": "2026-03-24T05:38:09.899000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450625"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in merge_handshake_packet() where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the message_length field remains consistent across all fragments of the same logical message. An attacker can exploit this by sending crafted DTLS fragments with conflicting message_length values, causing the implementation to allocate a buffer based on a smaller initial fragment and subsequently write beyond its bounds using larger, inconsistent fragments. Because the merge operation does not enforce proper bounds checking against the allocated buffer size, this results in an out-of-bounds write on the heap. The vulnerability is remotely exploitable without authentication via the DTLS handshake path and can lead to application crashes or potential memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability should be classified as an important flaw rather than moderate because it exposes a pre-authentication, remotely reachable heap buffer overflow in the DTLS handshake processing path, which is part of the core protocol handling logic and commonly exposed in network-facing services. The flaw enables an attacker to inject controlled data at attacker-chosen offsets and sizes beyond allocated heap boundaries by exploiting inconsistent message_length handling across fragments, effectively creating a constrained but meaningful heap write primitive. Unlike benign memory safety bugs, this condition is deterministically triggerable with a small number of crafted packets and no environmental dependencies for denial-of-service, and it targets a long-lived parsing state where memory corruption can affect adjacent heap structures. Even if reliable code execution requires additional heap manipulation or layout knowledge, the combination of remote reachability, lack of authentication, controlled memory corruption capability, and trivial crashability significantly elevates the risk profile beyond moderate severity. In real-world deployments, such primitives are often sufficient to enable heap grooming and exploitation chains, particularly in services that repeatedly process attacker-controlled input, making this a materially important security flaw.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33846"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450625",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450625"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33846",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33846"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33846",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33846"
        }
      ],
      "release_date": "2026-05-04T08:53:59.249000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Joshua Rogers"
          ],
          "organization": "AISLE Research Team"
        }
      ],
      "cve": "CVE-2026-42009",
      "cwe": {
        "id": "CWE-475",
        "name": "Undefined Behavior for Input to API"
      },
      "discovery_date": "2026-05-06T16:32:32.382000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2467279"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequence numbers. This could lead to unstable packet ordering or undefined behavior, resulting in a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The impact for this flaw has been downgraded on Red Hat Enterprise Linux due to the following reason:\n\n- The number of elements passed to the vulnerable function at runtime is known and is at most 6 and the element size is sufficiently small. glibc\u2019s qsort implementation will not exercise the quick sort code path, which would otherwise cause an infloop or out-of-bound write.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
          "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
          "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42009"
        },
        {
          "category": "external",
          "summary": "RHBZ#2467279",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467279"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42009",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42009"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42009",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42009"
        }
      ],
      "release_date": "2026-04-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-26T06:51:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:20613"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "AppStream-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-dane-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-debugsource-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-devel-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-fips-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-0:3.8.10-4.el10_2.x86_64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.s390x",
            "AppStream-10.2.Z:gnutls-utils-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.src",
            "BaseOS-10.2.Z:gnutls-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.ppc64le",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.s390x",
            "BaseOS-10.2.Z:gnutls-c++-debuginfo-0:3.8.10-4.el10_2.x86_64",
            "BaseOS-10.2.Z:gnutls-dane-0:3.8.10-4.el10_2.aarch64",
            "BaseOS-10.2.

Action not permitted

CVE-2026-3832 (GCVE-0-2026-3832)

FKIE_CVE-2026-3832

GHSA-3RQJ-4QQW-JGWR

MSRC_CVE-2026-3832

RHSA-2026:13274

RHSA-2026:20612

RHSA-2026:20613