ELSA-2018-3050
- ULN >
- Oracle Linux Errata repository >
- ELSA-2018-3050
ELSA-2018-3050 - gnutls security, bug fix, and enhancement update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2018-11-05 |
Description
[3.3.29-8.0.1]
- Include ECDSA KAT into selftests for FIPS140-2 compliance [Orabug 27484156]
[3.3.29-8]
- Backported --sni-hostname option which allows overriding the hostname
advertised to the peer (#1444792)
- Improved counter-measures in TLS CBC record padding for lucky13 attack
(CVE-2018-10844, #1589704, CVE-2018-10845, #1589707)
- Added counter-measures for 'Just in Time' PRIME + PROBE cache-based attack
(CVE-2018-10846, #1589708)
- Address p11tool issue in object deletion in batch mode (#1375307)
- Backport PKCS#11 tests from master branch. Some tests were disabled due to
unsupported features in 3.3.x (--load-pubkey and --test-sign options, ECC key
generation without login, and certificates do not inherit ID from the private
key)
- p11tool explicitly marks certificates and public keys as NOT private objects
and private keys as private objects
- Enlarge buffer size to support resumption with large keys (#1542461)
- Legacy HMAC-SHA384 cipher suites were disabled by default
- Added DSA key generation to p11tool (#1464896)
- Address session renegotiation issue using client certificate (#1434091)
- Address issue when importing private keys into Atos HSM (#1460125)
Related CVEs
| CVE-2018-10845 |
| CVE-2018-10844 |
| CVE-2018-10846 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 7 (aarch64) | gnutls-3.3.29-8.0.1.el7.src.rpm | 41509080408830898062097615076516 | ELBA-2019-0518 |
| gnutls-3.3.29-8.0.1.el7.aarch64.rpm | 14981abd04cad06732e1fb6b4d0c4499 | ELBA-2019-0518 | |
| gnutls-c++-3.3.29-8.0.1.el7.aarch64.rpm | 8f9473a0d186122c94cd74478b3ae78f | ELBA-2019-0518 | |
| gnutls-dane-3.3.29-8.0.1.el7.aarch64.rpm | d3ef97bf215103dac59966f91c0f77e8 | ELBA-2019-0518 | |
| gnutls-devel-3.3.29-8.0.1.el7.aarch64.rpm | 828877e7f6afb6cffc409e9fc0b9dcc6 | ELBA-2019-0518 | |
| gnutls-utils-3.3.29-8.0.1.el7.aarch64.rpm | e6c457ed51501e60f1d88100cd7cdbbc | ELBA-2019-0518 | |
| Oracle Linux 7 (x86_64) | gnutls-3.3.29-8.0.1.el7.src.rpm | 41509080408830898062097615076516 | ELBA-2019-0518 |
| gnutls-3.3.29-8.0.1.el7.i686.rpm | 75f5f846aaffdc665d9dc156d2375b99 | ELBA-2019-0518 | |
| gnutls-3.3.29-8.0.1.el7.x86_64.rpm | 2ee3b88fefa3b45a37b80225fcb026b0 | ELBA-2019-0518 | |
| gnutls-c++-3.3.29-8.0.1.el7.i686.rpm | ad1dc4dc5df67ff0b70740ea3b5064d0 | ELBA-2019-0518 | |
| gnutls-c++-3.3.29-8.0.1.el7.x86_64.rpm | 2cc19bb5011e56ba9c34b6ed43e21a5c | ELBA-2019-0518 | |
| gnutls-dane-3.3.29-8.0.1.el7.i686.rpm | 467feace88f4ac73193105d5b60f7bed | ELBA-2019-0518 | |
| gnutls-dane-3.3.29-8.0.1.el7.x86_64.rpm | cf1b7b6c42995e37773912d2b3b59252 | ELBA-2019-0518 | |
| gnutls-devel-3.3.29-8.0.1.el7.i686.rpm | 03b5590decc1facc8b55a85560db97f1 | ELBA-2019-0518 | |
| gnutls-devel-3.3.29-8.0.1.el7.x86_64.rpm | 06d5cbda3fe0ed3c11974b5849830543 | ELBA-2019-0518 | |
| gnutls-utils-3.3.29-8.0.1.el7.x86_64.rpm | 72f96a6fe6a204e41c125f75d60c766c | ELBA-2019-0518 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
