ELSA-2024-12135

ULN >
Oracle Linux Errata repository >
ELSA-2024-12135

ELSA-2024-12135 - gnutls security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-02-05

Description

[3.6.16-8.1_fips]
- Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length
as defined in FIPS 186-4 section B.3.2 [Orabug: 33200526]
- Allow bigger known RSA modulus sizes when calling
rsa_generate_fips186_4_keypair directly [Orabug: 33200526]
- Change Epoch from 1 to 10

[3.6.16-8.1]
- auth/rsa-psk: minimize branching after decryption (RHEL-21550)

Related CVEs

CVE-2024-0553

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	gnutls-3.6.16-8.el8_9.1_fips.src.rpm	c4ec89838f64e87c1c98e55165951167	-	ol8_aarch64_u4_security_validation
	gnutls-3.6.16-8.el8_9.1_fips.aarch64.rpm	6efdb25375116f4ce5f77f43aee3e37e	-	ol8_aarch64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.1_fips.aarch64.rpm	da5563f78e80ec1d542211ca197aa77f	-	ol8_aarch64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.1_fips.aarch64.rpm	385b38c66cfd50b989471449a67c4c65	-	ol8_aarch64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.1_fips.aarch64.rpm	77a9ad42f0108e62c1c52c025fca8d11	-	ol8_aarch64_u4_security_validation
	gnutls-utils-3.6.16-8.el8_9.1_fips.aarch64.rpm	2f038746f8c67c47a59350b91fce5ead	-	ol8_aarch64_u4_security_validation

Oracle Linux 8 (x86_64)	gnutls-3.6.16-8.el8_9.1_fips.src.rpm	c4ec89838f64e87c1c98e55165951167	-	ol8_x86_64_u4_security_validation
	gnutls-3.6.16-8.el8_9.1_fips.i686.rpm	c6dbf155e9aa2661c01ea0f852438991	-	ol8_x86_64_u4_security_validation
	gnutls-3.6.16-8.el8_9.1_fips.x86_64.rpm	7f4cf4ee324aa4ad5d71275021d33022	-	ol8_x86_64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.1_fips.i686.rpm	3add8f28d77d63dc8dc70e335e81161f	-	ol8_x86_64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.1_fips.x86_64.rpm	42ccef2162a33018057ebe8af301d733	-	ol8_x86_64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.1_fips.i686.rpm	894746e42e84fab52297242b1e08d733	-	ol8_x86_64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.1_fips.x86_64.rpm	109ab5dc5672869fe380c18797930b4e	-	ol8_x86_64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.1_fips.i686.rpm	32a9431bc01d3ed779534588cd663e3c	-	ol8_x86_64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.1_fips.x86_64.rpm	912dfe5973c989e225fcb8c23530b8a6	-	ol8_x86_64_u4_security_validation
	gnutls-utils-3.6.16-8.el8_9.1_fips.x86_64.rpm	c8155606c014444acb6b28a35b8f2cff	-	ol8_x86_64_u4_security_validation

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691