ELSA-2019-3600

ELSA-2019-3600 - gnutls security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2019-11-14

Description


[3.6.8-8]
- Use fallback random function for RSA blinding in FIPS selftests

[3.6.8-7]
- Fix deterministic signature creation in selftests

[3.6.8-6]
- Treat login error more gracefully when enumerating PKCS#11 tokens (#1705478)
- Use deterministic ECDSA/DSA in FIPS selftests (#1716560)
- Add gnutls_aead_cipher_{encrypt,decrypt}v2 functions (#1684461)

[3.6.8-5]
- Avoid UB when encrypting session tickets

[3.6.8-4]
- Add RNG continuous test under FIPS

[3.6.8-3]
- Follow-up fix on multiple key updates handling (#1673975)

[3.6.8-2]
- Run FIPS AES self-tests over overridden algorithms

[3.6.8-1]
- Update to upstream 3.6.8 release

[3.6.5-4]
- Fixed FIPS signatures self tests (#1680509)

[3.6.5-3]
- Fixed CVE-2019-3829 (#1693285)
- Fixed CVE-2019-3836 (#1693288)
- Added explicit BuildRequires for nettle-devel >= 3.4.1


Related CVEs


CVE-2019-3829
CVE-2019-3836

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) gnutls-3.6.8-8.el8.src.rpmd0cb982f5e2dbd791f122cdccb5e996b-
gnutls-3.6.8-8.el8.aarch64.rpmc00a5cc710c7b45b5d84e4740fe1bf6a-
gnutls-c++-3.6.8-8.el8.aarch64.rpm1d1f84c4df497fdcd54b4a71a225b55f-
gnutls-dane-3.6.8-8.el8.aarch64.rpmbc2207228b8a57a93590ed31d22cff8a-
gnutls-devel-3.6.8-8.el8.aarch64.rpm659c167fc46814ff002fdf1cc2a49bb5-
gnutls-utils-3.6.8-8.el8.aarch64.rpm78fd73e6153cc72cf8ad07926133a564-
Oracle Linux 8 (x86_64) gnutls-3.6.8-8.el8.src.rpmd0cb982f5e2dbd791f122cdccb5e996b-
gnutls-3.6.8-8.el8.i686.rpm4e5d1433539a0553a6bae1a2203e275d-
gnutls-3.6.8-8.el8.x86_64.rpmc603145e0e8455e9be3a5d750dd33a98-
gnutls-c++-3.6.8-8.el8.i686.rpmc075697233d567e924716890e767da06-
gnutls-c++-3.6.8-8.el8.x86_64.rpmdfea2f50e7877e7d9f8ab27a045045f5-
gnutls-dane-3.6.8-8.el8.i686.rpm54c6137a12291da4fa31f6afdcb27d47-
gnutls-dane-3.6.8-8.el8.x86_64.rpmcf71c49c84a1c546d5a4dcec574dee5e-
gnutls-devel-3.6.8-8.el8.i686.rpmaf9bd58c0cf1d6fc1715f85899925c06-
gnutls-devel-3.6.8-8.el8.x86_64.rpma56a41fcd0f9d239932ed937cd8d1801-
gnutls-utils-3.6.8-8.el8.x86_64.rpm31de6935c44919cc808ebc3b8010de56-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete