Description
A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of information disclosure.
Published: 2026-06-01
Score: 3.7 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability involves the PKCS#7 padding check within GnuTLS, which is executed with a non‑constant‑time comparison. This timing side‑channel allows an attacker to deduce the value of padding bytes when decrypting data. The disclosed information leaks only padding values, which can be used in further cryptographic attacks. This flaw is cataloged as CWE‑208, resulting in an Information Exposure result with a CVSS score of 3.7.

Affected Systems

Affected distributions include Red Hat Enterprise Linux 10, 6, 7, 8, and 9, as well as Red Hat Hardened Images and Red Hat OpenShift Container Platform 4. The patch that addresses this issue has been published in the RHSA‑2026:20613 errata. The vulnerability applies to any system component that performs PKCS#7 decryption using the affected GnuTLS libraries.

Risk and Exploitability

The risk is moderate; the EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. Exploitation would require an attacker to deliver crafted ciphertext to a service that decrypts it with GnuTLS and to observe timing differences. The attack is likely remote, via network traffic to a vulnerable service, though the specific attack vector is inferred from the description. No published exploit is known.

Generated by OpenCVE AI on June 1, 2026 at 21:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the RedHat Security Advisory RHSA-2026:20613 to update the GnuTLS library to a version that performs constant‑time padding checks.
  • Ensure that the system is running the patched version of GnuTLS and that any services relying on PKCS#7 decryption are restarted to use the updated library.
  • If immediate patching is not possible, isolate the affected services behind a firewall or load balancer that limits external access and consider disabling legacy PKCS#7 functionality until the patch can be applied.

Generated by OpenCVE AI on June 1, 2026 at 21:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6281-1 gnutls28 security update
Ubuntu USN Ubuntu USN USN-8284-1 GnuTLS vulnerabilities
History

Tue, 16 Jun 2026 22:30:00 +0000

Type Values Removed Values Added
First Time appeared Redhat enterprise Linux Eus
Redhat rhui
CPEs cpe:/a:redhat:rhui:5::el9
cpe:/o:redhat:enterprise_linux_eus:10.0
Vendors & Products Redhat enterprise Linux Eus
Redhat rhui
References

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Gnu
Gnu gnutls
Redhat hardened Images
Redhat openshift Container Platform
Vendors & Products Gnu
Gnu gnutls
Redhat hardened Images
Redhat openshift Container Platform

Tue, 02 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/o:redhat:enterprise_linux:9 cpe:/a:redhat:enterprise_linux:9::appstream
cpe:/o:redhat:enterprise_linux:9::baseos
References

Tue, 02 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 01 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Description A flaw was found in gnutls. The PKCS#7 padding check, performed during decryption, was not constant-time. This timing side-channel could allow a remote attacker to potentially leak sensitive information about the padding bytes through observable timing differences. This vulnerability is a form of information disclosure.
Title Guntls: gnutls: information disclosure via timing side-channel in pkcs#7 padding removal
First Time appeared Redhat
Redhat enterprise Linux
Redhat hummingbird
Redhat openshift
Weaknesses CWE-208
CPEs cpe:/a:redhat:hummingbird:1
cpe:/a:redhat:openshift:4
cpe:/o:redhat:enterprise_linux:10.2
cpe:/o:redhat:enterprise_linux:6
cpe:/o:redhat:enterprise_linux:7
cpe:/o:redhat:enterprise_linux:8
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux
Redhat hummingbird
Redhat openshift
References
Metrics cvssV3_1

{'score': 3.7, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N'}

Subscriptions

Gnu Gnutls
Redhat Enterprise Linux Enterprise Linux Eus Hardened Images Hummingbird Openshift Openshift Container Platform Rhui
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-06-16T22:01:51.337Z

Reserved: 2026-04-02T11:07:20.944Z

Link: CVE-2026-5419

cve-icon Vulnrichment

Updated: 2026-06-02T12:35:34.819Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-01T21:16:47.480

Modified: 2026-06-02T17:16:37.793

Link: CVE-2026-5419

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T20:52:43Z

Weaknesses
  • CWE-208

    Observable Timing Discrepancy