Security Bulletin: Vulnerabilities in multiple components affect IBM SAN Volume Controller, IBM Spectrum Virtualize and IBM FlashSystem products

Summary Vulnerabilities in libssh, iputils, glib2, libtasn1 and gnutls components affect IBM Storage Virtualize products and could cause denial of service and confidentiality impacts. CVE-2025-47268 CVE-2025-4373 CVE-2024-12133 CVE-2025-48964 CVE-2024-12243. Vulnerability Details...

gnutls-3.8.11-1.1 on GA media (moderate)

gnutls-3.8.11-1.1 on GA media Announcement ID: openSUSE-SU-2025:15765-1 Rating: moderate Cross-References: CVE-2025-9820 CVSS scores: CVE-2025-9820 SUSE : 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...

OPENSUSE-SU-2025:15765-1 gnutls-3.8.11-1.1 on GA media

These are all security issues fixed in the gnutls-3.8.11-1.1 package on the GA media of openSUSE Tumbleweed...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: gnutls (UTSA-2025-990960)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990960 advisory. A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite. Tenable has extracted the preceding description block directly fro...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: gnutls (UTSA-2025-990961)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990961 advisory. A heap-buffer-overflow off-by-one flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings fro...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: gnutls (UTSA-2025-990959)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990959 advisory. A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject Alternative Name SAN...

Linux Distros Unpatched Vulnerability : CVE-2025-9820

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the GnuTLS library, specifically in the gnutlspkcs11tokeninit function that handles PKCS11 token initialization. When a token label longer...

[SECURITY] Fedora 43 Update: gnutls-3.8.11-1.fc43

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, OpenPGP and...

Fedora 43 : gnutls (2025-45b1844342)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-45b1844342 advisory. Update to the 3.8.11 release with a fix for CVE-2025-9820 and several enhancements. Tenable has extracted the preceding description block directly from the...

FreeBSD : GnuTLS -- Stack write buffer overflow (b6835edf-c6c8-11f0-8471-74563cf9e4e9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the b6835edf-c6c8-11f0-8471-74563cf9e4e9 advisory. GnuTLS reports: When a PKCS11 token is initialized with gnutlspkcs11tokeninit function and it is passed...

[slackware-security] gnutls

New gnutls packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gnutls-3.8.11-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: libgnutls: Fix stack overwrite in...

EulerOS 2.0 SP13 : gnutls (EulerOS-SA-2025-2434)

According to the versions of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject...

Slackware: Security Advisory (SSA:2025-324-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2025-2445)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2025-2434)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP13 : gnutls (EulerOS-SA-2025-2445)

According to the versions of the gnutls packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic of Subject...

Slackware Linux 15.0 / current gnutls Vulnerability (SSA:2025-324-01)

The version of gnutls installed on the remote host is prior to 3.8.11. It is, therefore, affected by a vulnerability as referenced in the SSA:2025-324-01 advisory. New gnutls packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

TencentOS Server 3: gnutls (TSSA-2024:0046)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0046 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

GnuTLS -- Stack write buffer overflow

GnuTLS reports: When a PKCS11 token is initialized with gnutlspkcs11tokeninit function and it is passed a token label longer than 32 characters, it may write past the boundary of stack allocated memory...

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the gnutlspkcs11tokeninit function. An attacker can cause a crash or potentially execute arbitrary code by supplying a PKCS11 token with a label longer than 32 characters, leading to writing past the end ...