SUSE-SU-2025:02340-1 Security update for gnutls

This update for gnutls fixes the following issues: - CVE-2025-6395: Fix NULL pointer dereference when 2nd Client Hello omits PSK bsc1246299 - CVE-2025-32988: Fix double-free due to incorrect ownership handling in the export logic of SAN entries containing an otherName bsc1246232 - CVE-2025-32989:...

Gnutls: null pointer dereference in _gnutls_figure_common_ciphersuite()

...

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : GnuTLS vulnerabilities (USN-7635-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7635-1 advisory. It was discovered that GnuTLS incorrectly handled exporting Subject Alternative Name SAN entries containing an otherName. A remote...

Ubuntu: Security Advisory (USN-7635-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dsa-5962 : gnutls-bin - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5962 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5962-1 [email protected] https://www.debian.org/securit...

CVE-2025-32988 affecting package gnutls for versions less than 3.8.3-5

CVE-2025-32988 affecting package gnutls for versions less than 3.8.3-5. A patched version of the package is available...

CVE-2025-32989 affecting package gnutls for versions less than 3.8.3-5

CVE-2025-32989 affecting package gnutls for versions less than 3.8.3-5. A patched version of the package is available...

CVE-2025-32990 affecting package gnutls for versions less than 3.8.3-5

CVE-2025-32990 affecting package gnutls for versions less than 3.8.3-5. A patched version of the package is available...

Gnutls: vulnerability in gnutls othername san export

...

Gnutls: vulnerability in gnutls sct extension parsing

...

Gnutls: vulnerability in gnutls certtool template parsing

...

[SECURITY] Fedora 41 Update: gnutls-3.8.10-1.fc41

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, OpenPGP and...

PT-2025-29687 · Undefined · Undefined

🚨 Breaking: Ubuntu systems vulnerable to RCE via GnuTLS flaw CVE-2023-7635-1. Patch now: ✅ Update libgnutls30 ✅ Enforce TLS1.3 ✅ Audit configurations Read more: 👉https://t.co/ejqMJPGYUI https://t.co/N6vQRFKbyS...

Fedora 41 : gnutls (2025-814d6183dd)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-814d6183dd advisory. This updates gnutls to the latest upstream release. Notable changes are: PKCS11 cryptographic provider support Support for kTLS rekeying with kernel 6.14+...

Fedora: Security Advisory (FEDORA-2025-814d6183dd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-7635-1: GnuTLS vulnerabilities

It was discovered that GnuTLS incorrectly handled exporting Subject Alternative Name SAN entries containing an otherName. A remote attacker could use this issue to cause GnuTLS to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-32988 It was discovered that...

Fedora: Security Advisory (FEDORA-2025-16a24364ce)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD : GnuTLS -- multiple vulnerabilities (c3e1df74-5e73-11f0-95e5-74563cf9e4e9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the c3e1df74-5e73-11f0-95e5-74563cf9e4e9 advisory. Daiki Ueno reports: Tenable has extracted the preceding description block directly from the...

Fedora 42 : gnutls (2025-16a24364ce)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-16a24364ce advisory. This updates gnutls to the latest upstream release. Notable changes are: PKCS11 cryptographic provider support Support for kTLS rekeying with kernel...

CLSA-2025-1752238368 Update of gnutls

Fix timing side-channel in deterministic ECDSA RHEL-28958 - Fix potential crash during chain building/verification RHEL-28953...