Stay Connected:

ELSA-2017-2292

ELSA-2017-2292 - gnutls security, bug fix, and enhancement update

Type:SECURITY
Impact:MODERATE
Release Date:2017-08-07

Description


[3.3.26-9]
- Address crash in OCSP status request extension, by eliminating the
unneeded parsing (CVE-2017-7507, #1455828)

[3.3.26-7]
- Address interoperability issue with 3.5.x (#1388932)
- Reject CAs which are both trusted and blacklisted in trust module (#1375303)
- Added new functions to set issuer and subject ID in certificates (#1378373)
- Reject connections with less than 1024-bit DH parameters (#1335931)
- Fix issue that made GnuTLS parse only the first 32 extensions (#1383748)
- Mention limitations of certtool in manpage (#1375463)
- Read PKCS#8 files with HMAC-SHA256 -as generated by openssl 1.1 (#1380642)
- Do not link directly to trousers but instead use dlopen (#1379739)
- Fix incorrect OCSP validation (#1377569)
- Added support for pin-value in PKCS#11 URIs (#1379283)
- Added the --id option to p11tool (#1399232)
- Improved sanity checks in RSA key generation (#1444780)
- Addressed CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337,
CVE-2017-7869


Related CVEs


CVE-2017-7507
CVE-2017-5334
CVE-2017-7869
CVE-2016-7444
CVE-2017-5335
CVE-2017-5336
CVE-2017-5337

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) gnutls-3.3.26-9.el7.src.rpm732a5bb07e173dc280e756b9e704478fb84613ffd2d0d0526219351390a2e302ELBA-2019-0518ol7_aarch64_latest
gnutls-3.3.26-9.el7.aarch64.rpm3d634b064a9545699813aed467012e9e1399ba3c80215cf5ae7b0b18e6df63f6ELBA-2019-0518ol7_aarch64_latest
gnutls-c++-3.3.26-9.el7.aarch64.rpmbfcd5a72c2a6b28b49815f190ad447d00cc6e0c2bce6f877a573d20c676ad02bELBA-2019-0518ol7_aarch64_latest
gnutls-dane-3.3.26-9.el7.aarch64.rpm7b414572afcad3bbd073ddf99b0e343c1540de7be2f8723d54c5cb61f3b3c6e0ELBA-2019-0518ol7_aarch64_latest
gnutls-devel-3.3.26-9.el7.aarch64.rpm90f113d4b2485e6b4ec390db59a92931c399c9b70b90cde65691955bfcc984bcELBA-2019-0518ol7_aarch64_latest
gnutls-utils-3.3.26-9.el7.aarch64.rpm418652947b7eb6d95d42d1197a109aa654e7dcd9c71b13c0c3f67f743950276dELBA-2019-0518ol7_aarch64_latest
Oracle Linux 7 (x86_64) gnutls-3.3.26-9.el7.src.rpm732a5bb07e173dc280e756b9e704478fb84613ffd2d0d0526219351390a2e302ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-3.3.26-9.el7.src.rpm732a5bb07e173dc280e756b9e704478fb84613ffd2d0d0526219351390a2e302ELBA-2019-0518ol7_x86_64_u4_base
gnutls-3.3.26-9.el7.i686.rpmcf079678a75439cd20517c32805e6a1da1a791f9dcff5e879c5977ee39aff5f8ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-3.3.26-9.el7.i686.rpmcf079678a75439cd20517c32805e6a1da1a791f9dcff5e879c5977ee39aff5f8ELBA-2019-0518ol7_x86_64_u4_base
gnutls-3.3.26-9.el7.x86_64.rpm851b16c4ff4740cc4155cef101a0252e7fe572938e7cff7ac7dacef89667962eELBA-2019-0518ol7_x86_64_latest_archive
gnutls-3.3.26-9.el7.x86_64.rpm851b16c4ff4740cc4155cef101a0252e7fe572938e7cff7ac7dacef89667962eELBA-2019-0518ol7_x86_64_u4_base
gnutls-c++-3.3.26-9.el7.i686.rpmda77aa25b16e30e4d404f0815d638af481717caa967b879b7a03d1169a2e776eELBA-2019-0518ol7_x86_64_latest_archive
gnutls-c++-3.3.26-9.el7.i686.rpmda77aa25b16e30e4d404f0815d638af481717caa967b879b7a03d1169a2e776eELBA-2019-0518ol7_x86_64_u4_base
gnutls-c++-3.3.26-9.el7.x86_64.rpme3b5901c383a5c9c6311345475d07c416e7d96d52fe6b2591c9432d5dd8c8803ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-c++-3.3.26-9.el7.x86_64.rpme3b5901c383a5c9c6311345475d07c416e7d96d52fe6b2591c9432d5dd8c8803ELBA-2019-0518ol7_x86_64_u4_base
gnutls-dane-3.3.26-9.el7.i686.rpmd6e7984436cf45688d25f4b5d8a24dd66b250bdac580f015f72acaf966e8bb85ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-dane-3.3.26-9.el7.i686.rpmd6e7984436cf45688d25f4b5d8a24dd66b250bdac580f015f72acaf966e8bb85ELBA-2019-0518ol7_x86_64_u4_base
gnutls-dane-3.3.26-9.el7.x86_64.rpm1f3b08d1da7c394e3dae3a3e8d6732005bfd00ffb61033961206a99cb8e6cb4bELBA-2019-0518ol7_x86_64_latest_archive
gnutls-dane-3.3.26-9.el7.x86_64.rpm1f3b08d1da7c394e3dae3a3e8d6732005bfd00ffb61033961206a99cb8e6cb4bELBA-2019-0518ol7_x86_64_u4_base
gnutls-devel-3.3.26-9.el7.i686.rpm3da4cde111192e1e04b40315f6011da71ced7025995e60e5fb3a4699028a0352ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-devel-3.3.26-9.el7.i686.rpm3da4cde111192e1e04b40315f6011da71ced7025995e60e5fb3a4699028a0352ELBA-2019-0518ol7_x86_64_u4_base
gnutls-devel-3.3.26-9.el7.x86_64.rpm2a102196009b245f5fc93a6bf56df05358e64a24016a214226e6cd85df81c7c5ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-devel-3.3.26-9.el7.x86_64.rpm2a102196009b245f5fc93a6bf56df05358e64a24016a214226e6cd85df81c7c5ELBA-2019-0518ol7_x86_64_u4_base
gnutls-utils-3.3.26-9.el7.x86_64.rpm22cc0239ccf261f652e2af0d894b05f54073336d560b6654a67bdd5c0748c534ELBA-2019-0518ol7_x86_64_latest_archive
gnutls-utils-3.3.26-9.el7.x86_64.rpm22cc0239ccf261f652e2af0d894b05f54073336d560b6654a67bdd5c0748c534ELBA-2019-0518ol7_x86_64_u4_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights