Lucene search
OracleLinuxELSA-2024-12336HistoryApr 19, 2024 - 12:00 a.m.
gnutls security update
2024-04-1900:00:00
linux.oracle.com
6
gnutls
security update
fips package
vulnerabilities
loop detection
side-channel attacks
[3.7.6-23.4_fips]
- Add FIPS package change: add fips suffix to Release and
set Epoch to 10 [Orabug: 35925409] - Update FIPS module name for Oracle Linux [Orabug: 35925409]
- Verify salt length and iteration count for PBKDF [Orabug: 35925409]
[3.7.6-23.4] - Fix timing side-channel in deterministic ECDSA (RHEL-28958)
- Fix potential crash during chain building/verification (RHEL-28953)
[3.7.6-23.3] - x509: detect loop in certificate chain (RHEL-21759)
- fips: Zeroize temporary values in integrity check (RHEL-21870)
[3.7.6-23.2] - auth/rsa_psk: minimize branching after decryption
[3.7.6-23.1] - auth/rsa_psk: side-step potential side-channel (RHEL-16755)
[3.7.6-23] - Mark SHA-1 signature verification non-approved in FIPS (#2102751)
[3.7.6-22] - Skip KTLS test on old kernel if host and target arches are different
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | gnutls | < 3.7.6-23.el9_3.4_fips | gnutls-3.7.6-23.el9_3.4_fips.src.rpm |
| oracle linux | 9 | aarch64 | gnutls | < 3.7.6-23.el9_3.4_fips | gnutls-3.7.6-23.el9_3.4_fips.aarch64.rpm |
| oracle linux | 9 | aarch64 | gnutls-c++ | < 3.7.6-23.el9_3.4_fips | gnutls-c++-3.7.6-23.el9_3.4_fips.aarch64.rpm |
| oracle linux | 9 | aarch64 | gnutls-dane | < 3.7.6-23.el9_3.4_fips | gnutls-dane-3.7.6-23.el9_3.4_fips.aarch64.rpm |
| oracle linux | 9 | aarch64 | gnutls-devel | < 3.7.6-23.el9_3.4_fips | gnutls-devel-3.7.6-23.el9_3.4_fips.aarch64.rpm |
| oracle linux | 9 | aarch64 | gnutls-utils | < 3.7.6-23.el9_3.4_fips | gnutls-utils-3.7.6-23.el9_3.4_fips.aarch64.rpm |
| oracle linux | 9 | src | gnutls | < 3.7.6-23.el9_3.4_fips | gnutls-3.7.6-23.el9_3.4_fips.src.rpm |
| oracle linux | 9 | i686 | gnutls | < 3.7.6-23.el9_3.4_fips | gnutls-3.7.6-23.el9_3.4_fips.i686.rpm |
| oracle linux | 9 | x86_64 | gnutls | < 3.7.6-23.el9_3.4_fips | gnutls-3.7.6-23.el9_3.4_fips.x86_64.rpm |
| oracle linux | 9 | i686 | gnutls-c++ | < 3.7.6-23.el9_3.4_fips | gnutls-c++-3.7.6-23.el9_3.4_fips.i686.rpm |
Related
nessus
nessus
Oracle Linux 9 : gnutls (ELSA-2024-12336)
2024-04-23 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gnutls (SUSE-SU-2024:0638-1)
2024-02-28 00:00:00
EulerOS 2.0 SP11 : gnutls (EulerOS-SA-2024-1213)
2024-03-12 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0031)
2024-02-09 00:00:00
Fedora: Security Advisory for gnutls (FEDORA-2024-80428c408c)
2024-01-30 00:00:00
Fedora: Security Advisory for gnutls (FEDORA-2024-c43a6cc3f8)
2024-02-09 00:00:00
oraclelinux
oraclelinux
gnutls security update
2024-01-30 00:00:00
gnutls security update
2024-05-08 00:00:00
gnutls security update
2024-05-07 00:00:00
redhat
redhat
(RHSA-2024:1082) Moderate: gnutls security update
2024-03-05 06:12:09
(RHSA-2024:0533) Moderate: gnutls security update
2024-01-29 00:58:22
(RHSA-2024:2889) Moderate: gnutls security update
2024-05-16 11:35:49
almalinux
almalinux
Moderate: gnutls security update
2024-01-29 00:00:00
Moderate: gnutls security update
2024-04-30 00:00:00
Moderate: gnutls security update
2024-04-18 00:00:00
osv
osv
Moderate: gnutls security update
2024-01-29 00:00:00
Moderate: gnutls security update
2024-04-18 00:00:00
gnutls28 vulnerabilities
2024-04-29 11:38:34
mageia
mageia
Updated gnutls packages fix security vulnerabilities
2024-02-09 04:34:03
Updated gnutls packages fix security vulnerabilities
2024-03-26 11:00:24
Updated gnutls packages fix a security vulnerability
2024-01-15 01:23:43
fedora
fedora
[SECURITY] Fedora 39 Update: gnutls-3.8.4-1.fc39
2024-03-24 01:07:12
[SECURITY] Fedora 38 Update: gnutls-3.8.4-1.fc38
2024-03-31 01:54:40
[SECURITY] Fedora 40 Update: gnutls-3.8.5-1.fc40
2024-04-19 21:42:06
cloudfoundry
cloudfoundry
USN-6733-1: GnuTLS vulnerabilities | Cloud Foundry
2024-05-23 00:00:00
USN-6593-1: GnuTLS vulnerabilities | Cloud Foundry
2024-02-29 00:00:00
rocky
rocky
gnutls security update
2024-05-10 14:32:36
gnutls security update
2024-02-12 20:17:16
gnutls security update
2024-05-06 13:04:07
ubuntu
ubuntu
GnuTLS vulnerabilities
2024-04-15 00:00:00
GnuTLS vulnerabilities
2024-04-29 00:00:00
GnuTLS vulnerabilities
2024-01-22 00:00:00
slackware
slackware
[slackware-security] gnutls
2024-03-20 00:27:18
[slackware-security] gnutls
2024-01-16 20:56:31
redhatcve
redhatcve
f5
f5
K000138649 : GnuTLS vulnerabilities CVE-2023-5981 and CVE-2024-0553
2024-02-21 00:00:00
cve
cve
cvelist
cvelist
CVE-2024-0553 Gnutls: incomplete fix for cve-2023-5981
2024-01-16 11:40:50
CVE-2024-28835 Gnutls: potential crash during chain building/verification
2024-03-21 06:13:26
CVE-2024-28834 Gnutls: vulnerable to minerva side-channel information leak
2024-03-21 13:29:11
debiancve
debiancve
prion
prion
Design/Logic Flaw
2024-01-16 12:15:00
Design/Logic Flaw
2024-01-16 14:15:00
debian
debian
[SECURITY] [DLA 3740-1] gnutls28 security update
2024-02-26 09:39:15
[SECURITY] [DLA 3660-1] gnutls28 security update
2023-11-22 19:12:39
alpinelinux
alpinelinux
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service (DoS)
2024-04-11 02:00:44
Sensitive Information Disclosure
2024-04-11 02:00:34
Improper Verification Of Cryptographic Signature
2024-01-30 17:14:32
redos
redos
ROS-20240409-15
2024-04-09 00:00:00
ROS-20240405-06
2024-04-05 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-0567 affecting package gnutls for versions less than 3.7.7-4
2024-03-14 22:34:11
photon
photon
Critical Photon OS Security Update - PHSA-2024-3.0-0717
2024-01-25 00:00:00