ELSA-2012-0428

ELSA-2012-0428 - gnutls security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2012-03-27

Description

[1.4.1-7.2]
- fix CVE-2011-4128 - buffer overflow in gnutls_session_get_data() (#752308)
- fix CVE-2012-1569 - missing length check when decoding DER lengths (#804920)
- fix CVE-2012-1573 - security issue in packet parsing (#805432)

Related CVEs

CVE-2011-4128

CVE-2012-1569

CVE-2012-1573

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 5 (i386)	gnutls-1.4.1-7.el5_8.2.src.rpm	b4c83cfad8b9c1d0b7a297618273a583	ELSA-2014-0594
	gnutls-1.4.1-7.el5_8.2.i386.rpm	344c6de16724513b46e405b6045a7811	ELSA-2014-0594
	gnutls-devel-1.4.1-7.el5_8.2.i386.rpm	e9f9298799db9ff38d76158d89b8021b	ELSA-2014-0594
	gnutls-utils-1.4.1-7.el5_8.2.i386.rpm	1f8b3bd8a131e26429679833f2506e28	ELSA-2014-0594
Oracle Linux 5 (ia64)	gnutls-1.4.1-7.el5_8.2.src.rpm	b4c83cfad8b9c1d0b7a297618273a583	ELSA-2014-0594
	gnutls-1.4.1-7.el5_8.2.i386.rpm	344c6de16724513b46e405b6045a7811	ELSA-2014-0594
	gnutls-1.4.1-7.el5_8.2.ia64.rpm	7763cd8d2edbfd3ae10915410d60a00a	ELSA-2014-0594
	gnutls-devel-1.4.1-7.el5_8.2.ia64.rpm	b26e6fbbbbd87e7203959224c84686b2	ELSA-2014-0594
	gnutls-utils-1.4.1-7.el5_8.2.ia64.rpm	ccb709bca86afc2576cbcbd14e27159a	ELSA-2014-0594
Oracle Linux 5 (x86_64)	gnutls-1.4.1-7.el5_8.2.src.rpm	b4c83cfad8b9c1d0b7a297618273a583	ELSA-2014-0594
	gnutls-1.4.1-7.el5_8.2.i386.rpm	344c6de16724513b46e405b6045a7811	ELSA-2014-0594
	gnutls-1.4.1-7.el5_8.2.x86_64.rpm	cbe5e4ff0338f4cc8409c867ccb7bd11	ELSA-2014-0594
	gnutls-devel-1.4.1-7.el5_8.2.i386.rpm	e9f9298799db9ff38d76158d89b8021b	ELSA-2014-0594
	gnutls-devel-1.4.1-7.el5_8.2.x86_64.rpm	c4c2379e46cb72aa73f82bc462a1678b	ELSA-2014-0594
	gnutls-utils-1.4.1-7.el5_8.2.x86_64.rpm	4ed02ecc16b2f3e580c35e95980649bd	ELSA-2014-0594

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team