Release date:
2026-05-25 21:35:46 UTC
Description:
- CVE-2026-42010: server RSA-PSK key exchange truncates the binary PSK
identity at the first NUL byte when looking up the pre-shared key,
causing usernames containing embedded NUL bytes to match shorter
legitimate identities and allowing authentication bypass
Updated packages:
-
gnutls-3.6.16-8.el8.1.tuxcare.els7.i686.rpm
sha:301000119e6b658ba468db851636fcdd528f14e513f14bbdc623cd71c9f3bd95
-
gnutls-3.6.16-8.el8.1.tuxcare.els7.x86_64.rpm
sha:904bd85b5d43b68342c410dc061b52290ffc9ab7a4997c3c66fe64d03bf9be7c
-
gnutls-c++-3.6.16-8.el8.1.tuxcare.els7.i686.rpm
sha:1485024ebaf6ec23ae929f731f2b1ee16502817bdf7f94bc0d7ffe9d1b194ac1
-
gnutls-c++-3.6.16-8.el8.1.tuxcare.els7.x86_64.rpm
sha:39864e8835fe9d2c4cd3fb12574d84319c0f6213bf93352de095bbe54fa88785
-
gnutls-dane-3.6.16-8.el8.1.tuxcare.els7.i686.rpm
sha:3cd513d114c84ad610bce6056e83680a42ada86ad3726a6fbb7018c1e6b4f66e
-
gnutls-dane-3.6.16-8.el8.1.tuxcare.els7.x86_64.rpm
sha:dce239b66ed6004cb92eef0250c04a244d55b3a51fd6ebf51f52a6676686bb07
-
gnutls-devel-3.6.16-8.el8.1.tuxcare.els7.i686.rpm
sha:d05e131e7e5af4c9fa67082b6a371037517b3823545221ffe80c3b6bda817553
-
gnutls-devel-3.6.16-8.el8.1.tuxcare.els7.x86_64.rpm
sha:5dca10e162fcd65221100dcaa1d49771ce9d035b2a143e02849111966519cbb8
-
gnutls-utils-3.6.16-8.el8.1.tuxcare.els7.x86_64.rpm
sha:1c6d2058fd31ab554787eee8360af248084d653f47d9cfa4261bc55b548b12d5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
