Heap Overread Vulnerability in GnuTLS Affecting Specific RSA Key Implementations
CVE-2026-5260

8.2HIGH

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 10.0 Extended Update Support
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
Vendor
CVE Published:
26 May 2026

What is CVE-2026-5260?

A vulnerability has been identified in GnuTLS where a remote attacker may exploit a flaw during an RSA key exchange process. By sending a specially crafted extremely short premaster secret to a server that utilizes an RSA key backed by a PKCS#11 token, it is possible to initiate a short heap overread. This type of memory corruption may allow an attacker to gain unauthorized access to sensitive information, posing a significant risk to affected systems.

Affected Version(s)

Red Hat Enterprise Linux 10 0:3.8.10-4.el10_2

Red Hat Enterprise Linux 10.0 Extended Update Support 0:3.8.9-9.el10_0.19

Red Hat Enterprise Linux 8 0:3.6.16-8.el8_10.6

References

https://access.redhat.com/errata/RHSA-2026:20611
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:20612
vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2026:20613
vendor-advisoryx_refsource_REDHAT

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Red Hat would like to thank Joshua Rogers (AISLE Research Team) for reporting this issue.
.