CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2026-42010 – Gnutls: gnutls: authentication bypass via nul character in username
https://notcve.org/view.php?id=CVE-2026-42010
07 May 2026 — A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass. This vulnerability allows an attacker to gain unauthorized access by circumventing the authentication process. • https://access.redhat.com/errata/RHSA-2026:13274 • CWE-626: Null Byte Interaction Error (Poison Null Byte) •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2026-34002 – Xorg: xwayland: x.org x server: information disclosure or denial of service via out-of-bounds read in xkb modifier map handling
https://notcve.org/view.php?id=CVE-2026-34002
05 May 2026 — A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) modifier map handling. An attacker with access to the X11 server can exploit this by sending a malformed request, which causes the server to read beyond its intended memory boundaries. This can lead to the exposure of sensitive information or cause the server to crash, resulting in a denial of service. • https://access.redhat.com/security/cve/CVE-2026-34002 • CWE-805: Buffer Access with Incorrect Length Value •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2026-34000 – Xwayland: xorg: x.org x server: information disclosure and denial of service via out-of-bounds read in xkb geometry processing.
https://notcve.org/view.php?id=CVE-2026-34000
05 May 2026 — A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifically within the `CheckSetGeom()` and `XkbAddGeomKeyAlias` functions, allows an attacker to read uninitialized or out-of-bounds memory. An attacker with a connection to the X11 server, either locally or remotely, can exploit this without user interaction. This could lead to the disclosure of memory contents or cause a denial of service by crashing the server. • https://access.redhat.com/security/cve/CVE-2026-34000 • CWE-125: Out-of-bounds Read •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2026-33845 – Gnutls: gnutls: denial of service via dtls zero-length fragment
https://notcve.org/view.php?id=CVE-2026-33845
30 Apr 2026 — A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This issue is remotely exploitable and may cause information disclosure or denial of service. • https://access.redhat.com/errata/RHSA-2026:13274 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 3.7EPSS: 0%CPEs: 8EXPL: 1CVE-2026-3832 – Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response
https://notcve.org/view.php?id=CVE-2026-3832
30 Apr 2026 — A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a logic error in how gnutls processes multi-record OCSP responses, a client with OCSP verification enabled may incorrectly accept a revoked server certificate, potentially leading to a compromise of trust. • https://access.redhat.com/errata/RHSA-2026:13274 • CWE-179: Incorrect Behavior Order: Early Validation •
CVSS: 7.4EPSS: 0%CPEs: 8EXPL: 1CVE-2026-3833 – Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison
https://notcve.org/view.php?id=CVE-2026-3833
30 Apr 2026 — A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constraints within `excludedSubtrees` or `permittedSubtrees`. A remote attacker can exploit this by crafting a leaf certificate with casing differences in the Subject Alternative Name (SAN), leading to a policy bypass where a certificate that should be rejected is instead accepted. This could result in unauthorized acce... • https://access.redhat.com/errata/RHSA-2026:13274 • CWE-178: Improper Handling of Case Sensitivity •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2026-6384 – Gimp: gimp: arbitrary code execution or denial of service via buffer overflow in gif image processing
https://notcve.org/view.php?id=CVE-2026-6384
15 Apr 2026 — A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's `ReadJeffsImage` function allows an attacker to write beyond an allocated buffer by processing a specially crafted GIF file. This can lead to a denial of service or potentially arbitrary code execution. • https://access.redhat.com/security/cve/CVE-2026-6384 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2026-40919 – Gimp: gimp: denial of service via specially crafted seattle filmworks file
https://notcve.org/view.php?id=CVE-2026-40919
15 Apr 2026 — A flaw was found in GIMP. This vulnerability, a buffer overflow in the `file-seattle-filmworks` plugin, can be exploited when a user opens a specially crafted Seattle Filmworks file. A remote attacker could leverage this to cause a denial of service (DoS), leading to the plugin crashing and potentially impacting the stability of the GIMP application. • https://access.redhat.com/security/cve/CVE-2026-40919 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2026-40918 – Gimp: gimp: denial of service via crafted pvr image file
https://notcve.org/view.php?id=CVE-2026-40918
15 Apr 2026 — A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can lead to a denial of service (DoS). This occurs due to a stack-based buffer overflow and an out-of-bounds read in the PVR image loader, causing the application to crash. Systems that process untrusted PVR image files are affected. • https://access.redhat.com/security/cve/CVE-2026-40918 • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2026-40917 – Gimp: gimp: application crashes or information disclosure via crafted icns image files
https://notcve.org/view.php?id=CVE-2026-40917
15 Apr 2026 — A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the `icns_slurp()` function, occurs when processing specially crafted ICNS image files. An attacker could provide a malicious ICNS file, potentially leading to application crashes or information disclosure on systems that process such files. • https://access.redhat.com/security/cve/CVE-2026-40917 • CWE-125: Out-of-bounds Read •