CNNVD-202602-1304 Information

CNNVD ID

CNNVD-202602-1304

Related CVE

CVE-2025-14831

• CNNVD Published: 2026-02-09

Description (Chinese)

GnuTLS是GnuTLS开源的一款免费的用于实现SSL、TLS和DTLS协议的安全通信库。 GnuTLS存在安全漏洞，该漏洞源于处理特制恶意证书时消耗过多CPU和内存，可能导致拒绝服务。

Description (English)

GnuTLS is a free-of-charge secure communications bank for the implementation of SSL, TLS and DTLS protocols. GnuTLS has a security loophole, which stems from over-consumption of CPUs and memory in the processing of specially created malicious certificates, which may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

gnutls

Published

2026-02-09

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-14831 https://bugzilla.redhat.com/show_bug.cgi?id=2423177 https://access.redhat.com/security/cve/cve-2025-14831