Back

SUSE Updates Address Critical Security Flaws in StrongSwan and GnuTLS

Severity: High (Score: 67.5)

Sources: Linuxsecurity

Published: 2026-06-02 · Updated: 2026-06-03

Keywords: update, issues, suse, gnutls, fixes, following, linux

Severity indicators: issue

Summary

SUSE has released updates for StrongSwan and GnuTLS addressing multiple vulnerabilities, including CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35332, CVE-2026-35333, and CVE-2026-35334 for StrongSwan, and CVE-2026-3833, CVE-2026-5260, CVE-2026-5419, CVE-2026-33845, CVE-2026-33846, CVE-2026-42009, CVE-2026-42010, and CVE-2026-42011 for GnuTLS. The vulnerabilities include issues like infinite loops, null pointer dereferences, and integer underflows, which could lead to denial of service or unauthorized access. StrongSwan's vulnerabilities were rated as high severity, while GnuTLS had critical vulnerabilities affecting various components. Patches are available via SUSE's recommended installation methods. Administrators are urged to apply these updates promptly to mitigate risks. The updates were released on June 1, 2026, for StrongSwan and May 22, 2026, for GnuTLS. Key Points: • SUSE released critical updates for StrongSwan and GnuTLS addressing multiple CVEs. • Vulnerabilities include null pointer dereferences and integer underflows, posing significant risks. • Administrators are advised to apply patches immediately to protect affected systems.

Detailed Analysis

**Impact** SUSE users running strongSwan and GnuTLS are affected by multiple critical vulnerabilities that could lead to denial of service, memory corruption, or unauthorized data manipulation. These issues impact secure communications in sectors relying on VPNs and TLS, potentially affecting global deployments given the widespread use of these libraries. No specific data breach or geographic targeting details are provided. **Technical Details** The vulnerabilities include infinite loops, null pointer dereferences, and integer underflows in strongSwan (CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35332, CVE-2026-35333, CVE-2026-35334) and multiple flaws in GnuTLS related to certificate handling, buffer management, and cryptographic operations (e.g., CVE-2026-3833, CVE-2026-5260, CVE-2026-5419). Attack vectors involve network-exposed protocols such as TLS, EAP-SIM/AKA, and RADIUS. No malware or specific exploitation campaigns are reported. **Recommended Response** Apply the SUSE patches immediately using YaST online_update or "zypper patch" to address all listed CVEs. Prioritize updates for strongSwan and GnuTLS packages to mitigate risks of denial of service and cryptographic failures. Monitor network traffic for anomalies in TLS and VPN connections and review logs for signs of exploitation attempts. No additional IOCs or detection signatures are provided.

Source articles (2)

  • SUSE 2026 2197 — Linuxsecurity · 2026-06-01
    ## This update for strongswan fixes the following issues: * CVE-2026-35328: infinite loop when handling supported versions TLS extension (bsc#1261712). * CVE-2026-35329: null pointer dereference when…
  • SUSE Linux Micro 6.1 Major GnuTLS Security Update Addressing 17 Issues — Linuxsecurity · 2026-06-02
    ### This update for gnutls fixes the following issues * CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive (bsc#1263707). * CVE-2026-5260: lib/pkcs11_privkey: guard against ov…

Timeline

  • 2026-04-30 — CVE-2026-33845 published: CVE-2026-33845 was published, affecting GnuTLS with critical vulnerabilities related to buffer handling.
  • 2026-04-30 — CVE-2026-3833 published: Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
  • 2026-05-04 — CVE-2026-33846 published: CVE-2026-33846 was published, addressing DTLS reassembly issues in GnuTLS.
  • 2026-05-07 — CVE-2026-42010 published: CVE-2026-42010 was published, fixing binary PSK identity lookup in GnuTLS.
  • 2026-05-07 — CVE-2026-42011 published: Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
  • 2026-05-14 — Public exploit for CVE-2026-35330 released: A proof-of-concept exploit appeared on GitHub, lowering the barrier for opportunistic attackers.
  • 2026-05-18 — CVE-2026-42009 published: CVE-2026-42009 was published, ensuring packets have differing sequence numbers in GnuTLS.
  • 2026-05-22 — GnuTLS update released: SUSE released an update for GnuTLS addressing 17 vulnerabilities, including CVE-2026-3833 and CVE-2026-5260.
  • 2026-05-26 — CVE-2026-5260 published: CVE-2026-5260 was published, guarding against overreading on short ciphertexts in GnuTLS.
  • 2026-06-01 — StrongSwan update released: SUSE released an update for StrongSwan fixing multiple vulnerabilities including CVE-2026-35328 and CVE-2026-35330.

CVEs

  • CVE-2026-33845
  • CVE-2026-33846
  • CVE-2026-35328
  • CVE-2026-35329
  • CVE-2026-35330
  • CVE-2026-35332
  • CVE-2026-35333
  • CVE-2026-35334
  • CVE-2026-3833
  • CVE-2026-42009
  • CVE-2026-42010
  • CVE-2026-42011
  • CVE-2026-5260
  • CVE-2026-5419

Related entities

  • Cwe-190 - Integer Overflow Or Wraparound (Cwe)
  • Cwe-476 - NULL Pointer Dereference (Cwe)
  • Linux (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed