gnutls

2018-12-05T21:25:03
ID SSA-2018-339-01
Type slackware
Reporter Slackware Linux Project
Modified 2018-12-05T21:25:03

Description

New gnutls packages are available for Slackware 14.2 and -current to fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:

patches/packages/gnutls-3.6.5-i586-1_slack14.2.txz: Upgraded. This update fixes a security issue: Bleichenbacher-like side channel leakage in PKCS#1 1.5 verification and padding oracle verification. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16868 ( Security fix )

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.

Updated package for Slackware 14.2: ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/gnutls-3.6.5-i586-1_slack14.2.txz

Updated package for Slackware x86_64 14.2: ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/gnutls-3.6.5-x86_64-1_slack14.2.txz

Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/gnutls-3.6.5-i586-1.txz

Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/gnutls-3.6.5-x86_64-1.txz

MD5 signatures:

Slackware 14.2 package: b6d0f623037be33241d775309789c68d gnutls-3.6.5-i586-1_slack14.2.txz

Slackware x86_64 14.2 package: c62a1095b96d22baa335bab1861d1e89 gnutls-3.6.5-x86_64-1_slack14.2.txz

Slackware -current package: 71c3d86add556f4e131ffe223a83510b n/gnutls-3.6.5-i586-1.txz

Slackware x86_64 -current package: dcb1a9dd8dd52dab978dc7c48270d986 n/gnutls-3.6.5-x86_64-1.txz

Installation instructions:

Upgrade the package as root: > upgradepkg gnutls-3.6.5-i586-1_slack14.2.txz