CVE-2025-6395

A NULL pointer dereference flaw was found in the GnuTLS software in _gnutls_figure_common_ciphersuite().

References

https://access.redhat.com/errata/RHSA-2025:16115

https://access.redhat.com/errata/RHSA-2025:16116

https://access.redhat.com/errata/RHSA-2025:17181

https://access.redhat.com/errata/RHSA-2025:17348

https://access.redhat.com/errata/RHSA-2025:17361

https://access.redhat.com/errata/RHSA-2025:17415

https://access.redhat.com/errata/RHSA-2025:19088

https://access.redhat.com/errata/RHSA-2025:22529

https://access.redhat.com/security/cve/CVE-2025-6395

https://bugzilla.redhat.com/show_bug.cgi?id=2376755

https://gitlab.com/gnutls/gnutls/-/issues/1718

https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html