Gnutls Gnutls Gnutls

stack.watch can notify you when security vulnerabilities are reported in Gnutls Gnutls. You can add multiple products that you use with Gnutls to create your own personal software stack watcher.

By the Year

In 2020 there have been 1 vulnerability in Gnutls Gnutls with an average score of 7.4 out of ten. Last year Gnutls had 0 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2020 as compared to last year.

Year Vulnerabilities Average Score
2020 1 7.40
2019 0 0.00
2018 0 0.00

It may take a day or so for new Gnutls vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.

Latest Gnutls Gnutls Security Vulnerabilities

GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS

CVE-2020-11501 7.4 - High - April 03, 2020

GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 (2018-07-16) because of an error in a 2017-10-06 commit. The DTLS client always uses 32 '\0' bytes instead of a random value, and thus contributes no randomness to a DTLS negotiation. This breaks the security guarantees of the DTLS protocol.

Use of a Broken or Risky Cryptographic Algorithm