Stay Connected:

ELSA-2018-3050

ELSA-2018-3050 - gnutls security, bug fix, and enhancement update

Type:SECURITY
Impact:MODERATE
Release Date:2018-11-05

Description


[3.3.29-8.0.1]
- Include ECDSA KAT into selftests for FIPS140-2 compliance [Orabug 27484156]

[3.3.29-8]
- Backported --sni-hostname option which allows overriding the hostname
advertised to the peer (#1444792)
- Improved counter-measures in TLS CBC record padding for lucky13 attack
(CVE-2018-10844, #1589704, CVE-2018-10845, #1589707)
- Added counter-measures for 'Just in Time' PRIME + PROBE cache-based attack
(CVE-2018-10846, #1589708)
- Address p11tool issue in object deletion in batch mode (#1375307)
- Backport PKCS#11 tests from master branch. Some tests were disabled due to
unsupported features in 3.3.x (--load-pubkey and --test-sign options, ECC key
generation without login, and certificates do not inherit ID from the private
key)
- p11tool explicitly marks certificates and public keys as NOT private objects
and private keys as private objects
- Enlarge buffer size to support resumption with large keys (#1542461)
- Legacy HMAC-SHA384 cipher suites were disabled by default
- Added DSA key generation to p11tool (#1464896)
- Address session renegotiation issue using client certificate (#1434091)
- Address issue when importing private keys into Atos HSM (#1460125)


Related CVEs


CVE-2018-10846
CVE-2018-10844
CVE-2018-10845

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) gnutls-3.3.29-8.0.1.el7.src.rpm8eb8664ed7d2ce2a0a87631bb1506d9177ba176326c6dec3511913460ecdbe2cELBA-2019-0518ol7_aarch64_latest
gnutls-3.3.29-8.0.1.el7.aarch64.rpm0ada21e3b0dcf723a2710ee7d2012f2ce494c2b506cb61a0bbde027ecfe676d5ELBA-2019-0518ol7_aarch64_latest
gnutls-c++-3.3.29-8.0.1.el7.aarch64.rpm344b3f8668ed79c1c2230f10eab01280920aa74f27aef6e1ececf50ff6a563b1ELBA-2019-0518ol7_aarch64_latest
gnutls-dane-3.3.29-8.0.1.el7.aarch64.rpm34c3ae89915d4c6e10d81529309f2968aa313403a2788caa190bd8fb20539c3cELBA-2019-0518ol7_aarch64_latest
gnutls-devel-3.3.29-8.0.1.el7.aarch64.rpm9672da65aaca82dee881b46babc2ddb2f128538df91d6e5e6f3f4455e00e6683ELBA-2019-0518ol7_aarch64_latest
gnutls-utils-3.3.29-8.0.1.el7.aarch64.rpm2591e9ccf5e74cdb85e1f85521b97b93e5cf4289bfab9150dffd40734288577eELBA-2019-0518ol7_aarch64_latest
Oracle Linux 7 (x86_64) gnutls-3.3.29-8.0.1.el7.src.rpm8eb8664ed7d2ce2a0a87631bb1506d9177ba176326c6dec3511913460ecdbe2cELBA-2019-0518ol7_x86_64_latest
gnutls-3.3.29-8.0.1.el7.src.rpm8eb8664ed7d2ce2a0a87631bb1506d9177ba176326c6dec3511913460ecdbe2cELBA-2019-0518ol7_x86_64_u6_base
gnutls-3.3.29-8.0.1.el7.i686.rpmced9624824d24e135f143db9511c2426fadd4ee3a0ef0fcd4841ffeafc275d69ELBA-2019-0518ol7_x86_64_latest
gnutls-3.3.29-8.0.1.el7.i686.rpmced9624824d24e135f143db9511c2426fadd4ee3a0ef0fcd4841ffeafc275d69ELBA-2019-0518ol7_x86_64_u6_base
gnutls-3.3.29-8.0.1.el7.x86_64.rpmf12ca0a5558706e312c43a8827e1d1431491535cb465efe2de800c2f5fa6d457ELBA-2019-0518exadata_dbserver_19.1.1.0.0_x86_64_base
gnutls-3.3.29-8.0.1.el7.x86_64.rpmf12ca0a5558706e312c43a8827e1d1431491535cb465efe2de800c2f5fa6d457ELBA-2019-0518exadata_dbserver_19.1.2.0.0_x86_64_base
gnutls-3.3.29-8.0.1.el7.x86_64.rpmf12ca0a5558706e312c43a8827e1d1431491535cb465efe2de800c2f5fa6d457ELBA-2019-0518exadata_dbserver_19.2.0.0.0_x86_64_base
gnutls-3.3.29-8.0.1.el7.x86_64.rpmf12ca0a5558706e312c43a8827e1d1431491535cb465efe2de800c2f5fa6d457ELBA-2019-0518ol7_x86_64_latest
gnutls-3.3.29-8.0.1.el7.x86_64.rpmf12ca0a5558706e312c43a8827e1d1431491535cb465efe2de800c2f5fa6d457ELBA-2019-0518ol7_x86_64_u6_base
gnutls-c++-3.3.29-8.0.1.el7.i686.rpm5ce497d1cc42d3c68ccd0ba59ab0b96d696c61ad2798dca97fe726d397b3bbb7ELBA-2019-0518ol7_x86_64_latest
gnutls-c++-3.3.29-8.0.1.el7.i686.rpm5ce497d1cc42d3c68ccd0ba59ab0b96d696c61ad2798dca97fe726d397b3bbb7ELBA-2019-0518ol7_x86_64_u6_base
gnutls-c++-3.3.29-8.0.1.el7.x86_64.rpmdc20b57b2c5a7e6b4f310cc2054678545f52f2dd5febd363fc249e71f0f13625ELBA-2019-0518ol7_x86_64_latest
gnutls-c++-3.3.29-8.0.1.el7.x86_64.rpmdc20b57b2c5a7e6b4f310cc2054678545f52f2dd5febd363fc249e71f0f13625ELBA-2019-0518ol7_x86_64_u6_base
gnutls-dane-3.3.29-8.0.1.el7.i686.rpmec1337e58b8670afaee11fd93e692b4836e2302f6306ebfbe20c3756f9d84e97ELBA-2019-0518ol7_x86_64_latest
gnutls-dane-3.3.29-8.0.1.el7.i686.rpmec1337e58b8670afaee11fd93e692b4836e2302f6306ebfbe20c3756f9d84e97ELBA-2019-0518ol7_x86_64_u6_base
gnutls-dane-3.3.29-8.0.1.el7.x86_64.rpmba751a5d5f825923805ef5cec84b0fa03c75b259054dd4c270f5954077cd0328ELBA-2019-0518ol7_x86_64_latest
gnutls-dane-3.3.29-8.0.1.el7.x86_64.rpmba751a5d5f825923805ef5cec84b0fa03c75b259054dd4c270f5954077cd0328ELBA-2019-0518ol7_x86_64_u6_base
gnutls-devel-3.3.29-8.0.1.el7.i686.rpm71c9352e7a33ca76b65e09fc4a75e25feaebc051444032545750f9b785e8d4c1ELBA-2019-0518ol7_x86_64_latest
gnutls-devel-3.3.29-8.0.1.el7.i686.rpm71c9352e7a33ca76b65e09fc4a75e25feaebc051444032545750f9b785e8d4c1ELBA-2019-0518ol7_x86_64_u6_base
gnutls-devel-3.3.29-8.0.1.el7.x86_64.rpm4944f1aa24b4c43f7ed6655eddd7b279652ed08f9430269835d9e1b0ca01b3b5ELBA-2019-0518ol7_x86_64_latest
gnutls-devel-3.3.29-8.0.1.el7.x86_64.rpm4944f1aa24b4c43f7ed6655eddd7b279652ed08f9430269835d9e1b0ca01b3b5ELBA-2019-0518ol7_x86_64_u6_base
gnutls-utils-3.3.29-8.0.1.el7.x86_64.rpm665f956561768b590930e5bc39184cd31ca2ba93c4402b46fee5f5046999e57fELBA-2019-0518ol7_x86_64_latest
gnutls-utils-3.3.29-8.0.1.el7.x86_64.rpm665f956561768b590930e5bc39184cd31ca2ba93c4402b46fee5f5046999e57fELBA-2019-0518ol7_x86_64_u6_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights