ELSA-2020-5483

ELSA-2020-5483 - gnutls security and bug fix update

Type:SECURITY
Severity:MODERATE
Release Date:2020-12-21

Description


[3.6.14-7]
- Increase DH key bits to >= 2048 in self-tests (#1879506)
- Implement self-tests for KDF and CMAC (#1890870)
- Fix CVE-2020-24659: heap buffer-overflow when 'no_renegotiation' alert is received (#1873959)


Related CVEs


CVE-2020-24659

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) gnutls-3.6.14-7.el8_3.src.rpme11605a7e2331b54a386eb1794470933-
gnutls-3.6.14-7.el8_3.aarch64.rpme7dd12201c16d4399964a68628917361-
gnutls-c++-3.6.14-7.el8_3.aarch64.rpmce4068e5bdd3f743cf589d417068cea2-
gnutls-dane-3.6.14-7.el8_3.aarch64.rpm96dc68cb3357be44efba242de6a3b7da-
gnutls-devel-3.6.14-7.el8_3.aarch64.rpmec889e3d502d348732e65f72af56427c-
gnutls-utils-3.6.14-7.el8_3.aarch64.rpm2aa7ff6bc527b0477ba57d206175f72e-
Oracle Linux 8 (x86_64) gnutls-3.6.14-7.el8_3.src.rpme11605a7e2331b54a386eb1794470933-
gnutls-3.6.14-7.el8_3.i686.rpm09cefaa5edb154844745b13de6ded307-
gnutls-3.6.14-7.el8_3.x86_64.rpm095e0789540b88547dd28ea7da1cb921-
gnutls-c++-3.6.14-7.el8_3.i686.rpmba9f7f44f89e561a9e2be5ad22e5fe6b-
gnutls-c++-3.6.14-7.el8_3.x86_64.rpmf40f6f44a01224870eaa23284cb6545e-
gnutls-dane-3.6.14-7.el8_3.i686.rpm4c416c18c34984222712b9d0a5f9a829-
gnutls-dane-3.6.14-7.el8_3.x86_64.rpme30f2b06c7b4acf066f3e0f1d54b5df8-
gnutls-devel-3.6.14-7.el8_3.i686.rpm1d51458928de4baeea234d4b592c21bb-
gnutls-devel-3.6.14-7.el8_3.x86_64.rpmb0251ef4df2cef00b9b56a62b35ae7c5-
gnutls-utils-3.6.14-7.el8_3.x86_64.rpm62f9128bc4583df342909c5f2cc9a6b2-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete