CVE-2026-5260 PUBLISHED

Gnutls: gnutls: information disclosure via heap overread in rsa key exchange

Assigner: redhat
Reserved: 31.03.2026 Published: 26.05.2026 Updated: 27.05.2026

A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA key exchange to a server using an RSA key backed by a PKCS#11 token, could trigger a short heap overread. This memory corruption vulnerability could lead to information disclosure.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
CVSS Score: 8.2

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Red Hat
Product	Red Hat Enterprise Linux 8
Versions	Default: affected unaffected from 0:3.6.16-8.el8_10.6 to * (excl.)

Vendor	Red Hat
Product	Red Hat Enterprise Linux 8
Versions	Default: affected unaffected from 0:3.6.16-8.el8_10.6 to * (excl.)

Vendor	Red Hat
Product	Red Hat Enterprise Linux 10
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat Enterprise Linux 6
Versions	Default: unknown

Vendor	Red Hat
Product	Red Hat Enterprise Linux 7
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat Enterprise Linux 9
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat Hardened Images
Versions	Default: affected

Vendor	Red Hat
Product	Red Hat OpenShift Container Platform 4
Versions	Default: affected

Credits

Red Hat would like to thank Joshua Rogers (AISLE Research Team) for reporting this issue.

References

Problem Types

Improper Validation of Specified Quantity in Input CWE