ELBA-2025-20657
- ULN >
- Oracle Linux Errata repository >
- ELBA-2025-20657
ELBA-2025-20657 - gnutls bug fix update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2025-10-09 |
Description
[3.6.16-8.4_fips]
- Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length
as defined in FIPS 186-4 section B.3.2 [Orabug: 33200526]
- Allow bigger known RSA modulus sizes when calling
rsa_generate_fips186_4_keypair directly [Orabug: 33200526]
- Change Epoch from 1 to 10
[3.6.16-8.4]
- Backport the fixes for CVE-2025-6395, CVE-2025-32988 and CVE-2025-32990
[3.6.16-8.3]
- Backport the fix for CVE-2024-12243
[3.6.16-8.3]
- Fix memleak with older GMP (RHEL-28957)
[3.6.16-8.2]
- Fix timing side-channel in deterministic ECDSA (RHEL-35231)
[3.6.16-8.1]
- auth/rsa-psk: minimize branching after decryption (RHEL-21550)
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 8 (aarch64) | gnutls-3.6.16-8.el8_10.4_fips.src.rpm | 5a13e8fa9d606442e4b24da6c9f9fd7e34c44b6fa13b835508663446fbc0c7f9 | - | ol8_aarch64_u4_security_validation |
| gnutls-3.6.16-8.el8_10.4_fips.aarch64.rpm | 3055f265c583006af4cfe82154e9de3cde90f3a7be7f35f50cae9d7df3704349 | - | ol8_aarch64_u4_security_validation | |
| gnutls-c++-3.6.16-8.el8_10.4_fips.aarch64.rpm | c312f7d21a2852daa8bae98f329246da159dcc63144dd6ce0f10f906c4c99b11 | - | ol8_aarch64_u4_security_validation | |
| gnutls-dane-3.6.16-8.el8_10.4_fips.aarch64.rpm | 260dfa9cd8da6ed8220449f69ff8a601fffc9ab6d120de87887f0c4c59344e1c | - | ol8_aarch64_u4_security_validation | |
| gnutls-devel-3.6.16-8.el8_10.4_fips.aarch64.rpm | 07d4a5db87111f55655a0909dab9667e27c15ecf8bc43e9ba349f86026ac2da3 | - | ol8_aarch64_u4_security_validation | |
| gnutls-utils-3.6.16-8.el8_10.4_fips.aarch64.rpm | 58d09852dd0a500316a81d380105f76472b6ea5ea3ec08850f004a45001cdb53 | - | ol8_aarch64_u4_security_validation | |
| Oracle Linux 8 (x86_64) | gnutls-3.6.16-8.el8_10.4_fips.src.rpm | 5a13e8fa9d606442e4b24da6c9f9fd7e34c44b6fa13b835508663446fbc0c7f9 | - | ol8_x86_64_u4_security_validation |
| gnutls-3.6.16-8.el8_10.4_fips.i686.rpm | 824ce9ae54af3526c34de66eeba77bef991212298496697279b3a9313e8e7998 | - | ol8_x86_64_u4_security_validation | |
| gnutls-3.6.16-8.el8_10.4_fips.x86_64.rpm | 77176afd2ce6b2b928ad75977fd44fe1bdbe8e7c34e108a55695d26cb206be67 | - | ol8_x86_64_u4_security_validation | |
| gnutls-c++-3.6.16-8.el8_10.4_fips.i686.rpm | a9a4a14adef0fa7f52111c91b88a38b199d9e23273b7f524e45eaa84abbf8b1e | - | ol8_x86_64_u4_security_validation | |
| gnutls-c++-3.6.16-8.el8_10.4_fips.x86_64.rpm | 8f3d5c8714d7b902f7177830233ca8c72edb9185a8c4318c9b4ee2cc8ebefbf1 | - | ol8_x86_64_u4_security_validation | |
| gnutls-dane-3.6.16-8.el8_10.4_fips.i686.rpm | 3f00c013871bab45cfa98bce2133b2dda3aa9943e55ce664dd2f251aa74fd1aa | - | ol8_x86_64_u4_security_validation | |
| gnutls-dane-3.6.16-8.el8_10.4_fips.x86_64.rpm | dd191688d11f859a4f4ae1931c240e1f79115e47c9fb80e0085a11ed3314a357 | - | ol8_x86_64_u4_security_validation | |
| gnutls-devel-3.6.16-8.el8_10.4_fips.i686.rpm | 4e422b2dbb8e831131987673c1010e23ef1835888ba806a2a9a8ea81ae553209 | - | ol8_x86_64_u4_security_validation | |
| gnutls-devel-3.6.16-8.el8_10.4_fips.x86_64.rpm | cf39048eea76ec8789ad49cb87a55a83527b3587c318b55ba90b477a932bfe61 | - | ol8_x86_64_u4_security_validation | |
| gnutls-utils-3.6.16-8.el8_10.4_fips.x86_64.rpm | 4b4f3b133348f61ec0dd96f69753cbbdce57bbb8e00035740be937072a23028a | - | ol8_x86_64_u4_security_validation | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
