- CVE-2026-33846: fix heap buffer overflow in DTLS handshake fragment reassembly by validating message-length consistency and bounding the fragment write against the destination buffer capacity - CVE-2026-42009: fix undefined behaviour in DTLS packet ordering by making the handshake_compare qsort comparator return 0 for equal sequence numbers - CVE-2026-42011: fix name constraints bypass by no longer short-circuiting the intersection of an empty permitted set, so later permitted constraints are still enforced - CVE-2026-42012: fix certificate verification bypass by making URI and SRV subjectAltName entries preclude the legacy CN fallback hostname check - CVE-2026-42013: fix certificate verification bypass by preventing CN and DN-email fallback when a subjectAltName entry is oversized - CVE-2026-5260: fix heap overread in RSA key exchange by rejecting a ciphertext whose size does not match the RSA modulus - CVE-2026-42014: fix use-after-free and leak in gnutls_pkcs11_token_set_pin when changing the security officer PIN - CVE-2026-42015: fix off-by-one out-of-bounds write when appending an element to a PKCS#12 bag that already holds the maximum number of elements