CVE-2026-42010
EUVD-2026-2835407.05.2026, 12:16
A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnu | gnutls | - |
| redhat | hardened_images | - |
| redhat | openshift_container_platform | 4.0 |
| redhat | enterprise_linux | 6.0 |
| redhat | enterprise_linux | 7.0 |
| redhat | enterprise_linux | 8.0 |
| redhat | enterprise_linux | 9.0 |
| redhat | enterprise_linux | 10.0 |
𝑥
= Vulnerable software versions
Debian Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gnutls |
| ||||||||||||
| gnutls-guile |
| ||||||||||||
| libgnutls-devel |
| ||||||||||||
| libgnutls30 |
| ||||||||||||
| libgnutls30-32bit |
| ||||||||||||
| libgnutls30-hmac |
| ||||||||||||
| libgnutls30-hmac-32bit |
| ||||||||||||
| libgnutlsxx-devel |
| ||||||||||||
| libgnutlsxx28 |
| ||||||||||||
| libgnutlsxx30 |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||||
|---|---|---|---|---|---|
| gnutls |
| ||||
| gnutls-c |
| ||||
| gnutls-dane |
| ||||
| gnutls-devel |
| ||||
| gnutls-utils |
|
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| gnutls |
| ||
| gnutls-c++ |
| ||
| gnutls-c++-debuginfo |
| ||
| gnutls-dane |
| ||
| gnutls-dane-debuginfo |
| ||
| gnutls-debuginfo |
| ||
| gnutls-debugsource |
| ||
| gnutls-devel |
| ||
| gnutls-utils |
| ||
| gnutls-utils-debuginfo |
|
Common Weakness Enumeration
- CWE-170 - Improper Null TerminationThe software does not terminate or incorrectly terminates a string or array with a null character or equivalent terminator.
- CWE-626 - Null Byte Interaction Error (Poison Null Byte)The product does not properly handle null bytes or NUL characters when passing data between different representations or components.
Vulnerability Media Exposure
References