Primary

Context

GnuTLS DTLS Packet Reordering Vulnerability Leading to Denial-of-Service

Vulnerability

Patched

A denial-of-service vulnerability has been identified in GnuTLS, specifically within the Datagram Transport Layer Security (DTLS) packet reordering logic. The issue arises because the comparator function, which orders DTLS packets by their sequence numbers, improperly manages packets with duplicate sequence numbers. This mismanagement can cause unstable packet ordering or undefined behavior, ultimately leading to a denial-of-service condition.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition by disrupting normal packet ordering, potentially leading to undefined behavior in applications using DTLS.

Added: May 18, 2026, 1:22 PM

Updated: May 18, 2026, 1:22 PM

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

7.7

relevance

8.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

7.7

relevance

8.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GnuTLS DTLS Packet Reordering Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

GnuTLS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating