CVE-2026-42009— GnuTLS 安全漏洞

Gnutls: gnutls: denial of service via dtls packet reordering vulnerability

A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security (DTLS) packet reordering logic. The comparator function, responsible for ordering DTLS packets by sequence numbers, did not correctly handle packets with duplicate sequence numbers. This could lead to unstable packet ordering or undefined behavior, resulting in a denial of service.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

从输入到API的未定义行为

GnuTLS 安全漏洞

GnuTLS是GnuTLS开源的一款免费的用于实现SSL、TLS和DTLS协议的安全通信库。 gnutls存在安全漏洞，该漏洞源于Datagram Transport Layer Security数据包重排序逻辑问题，可能导致远程攻击者利用比较函数未正确处理重复序列号的数据包，造成不稳定数据包排序或未定义行为，导致拒绝服务。

N/A

N/A