Stay Connected:

ELSA-2020-5483

ELSA-2020-5483 - gnutls security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2020-12-21

Description


[3.6.14-7]
- Increase DH key bits to >= 2048 in self-tests (#1879506)
- Implement self-tests for KDF and CMAC (#1890870)
- Fix CVE-2020-24659: heap buffer-overflow when 'no_renegotiation' alert is received (#1873959)


Related CVEs


CVE-2020-24659

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_aarch64_appstream
gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_aarch64_baseos_latest
gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_aarch64_u3_baseos_patch
gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_aarch64_u4_baseos_base
gnutls-3.6.14-7.el8_3.aarch64.rpm33c65548882428f81a5df123a4ea8c3ee211c4c839792f65c687b026f25e907a-ol8_aarch64_baseos_latest
gnutls-3.6.14-7.el8_3.aarch64.rpm33c65548882428f81a5df123a4ea8c3ee211c4c839792f65c687b026f25e907a-ol8_aarch64_u3_baseos_patch
gnutls-3.6.14-7.el8_3.aarch64.rpm33c65548882428f81a5df123a4ea8c3ee211c4c839792f65c687b026f25e907a-ol8_aarch64_u4_baseos_base
gnutls-c++-3.6.14-7.el8_3.aarch64.rpmd190dd70c987487ea002277023e89302625a4ff101b8aec2641615eb25c14d62-ol8_aarch64_appstream
gnutls-dane-3.6.14-7.el8_3.aarch64.rpm0f38f2969da6f46fc68ac568dbc6a7e9c8dad3cda8704b5eb73baf5547ff7428-ol8_aarch64_appstream
gnutls-devel-3.6.14-7.el8_3.aarch64.rpm636809e97ed02bda766d7195485b8a083c9fda9c9ddb366c18d91a82df017e36-ol8_aarch64_appstream
gnutls-utils-3.6.14-7.el8_3.aarch64.rpm22a0a3f45e61acfe3b467ecedc0cdb70f83b36a32d08093995c9c028550aa1c4-ol8_aarch64_appstream
Oracle Linux 8 (x86_64) gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_x86_64_appstream
gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_x86_64_baseos_latest
gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_x86_64_u3_baseos_patch
gnutls-3.6.14-7.el8_3.src.rpme7953aac47f56c5f22371a59228555b9cb3db32e1d787877c6ade88f2a2e00c3-ol8_x86_64_u4_baseos_base
gnutls-3.6.14-7.el8_3.i686.rpm9ed8ed8869e951f3bfb73bdcb4e6aae04b9f9aba278f4835b5ecc34d5dec1991-ol8_x86_64_baseos_latest
gnutls-3.6.14-7.el8_3.i686.rpm9ed8ed8869e951f3bfb73bdcb4e6aae04b9f9aba278f4835b5ecc34d5dec1991-ol8_x86_64_u3_baseos_patch
gnutls-3.6.14-7.el8_3.i686.rpm9ed8ed8869e951f3bfb73bdcb4e6aae04b9f9aba278f4835b5ecc34d5dec1991-ol8_x86_64_u4_baseos_base
gnutls-3.6.14-7.el8_3.x86_64.rpmbdba290694ea2f6ed85c3b00a5057669d0b2518c70a32da5736972f12c4cc964-ol8_x86_64_baseos_latest
gnutls-3.6.14-7.el8_3.x86_64.rpmbdba290694ea2f6ed85c3b00a5057669d0b2518c70a32da5736972f12c4cc964-ol8_x86_64_u3_baseos_patch
gnutls-3.6.14-7.el8_3.x86_64.rpmbdba290694ea2f6ed85c3b00a5057669d0b2518c70a32da5736972f12c4cc964-ol8_x86_64_u4_baseos_base
gnutls-c++-3.6.14-7.el8_3.i686.rpmff8f9cc89de825353e9550837aafaf28dd62b1c62b57f6ac0aa2c85d80bc07bf-ol8_x86_64_appstream
gnutls-c++-3.6.14-7.el8_3.x86_64.rpm416d0fc31d0d3d550516ec0a8d221e5d1db531b93619212bb361748759770893-ol8_x86_64_appstream
gnutls-dane-3.6.14-7.el8_3.i686.rpm661164d291f9ce34599fe9259ead963aba67fa34dfa3892f24efccc297ee16df-ol8_x86_64_appstream
gnutls-dane-3.6.14-7.el8_3.x86_64.rpmbbe352d487bee68dcef17bc2be826e9932fb390c220d537692dc49964f5a464b-ol8_x86_64_appstream
gnutls-devel-3.6.14-7.el8_3.i686.rpma05d1274e06225bb9560c761a4396b66696077dc3af972819dbcea75ec0aa111-ol8_x86_64_appstream
gnutls-devel-3.6.14-7.el8_3.x86_64.rpm18f15197f4962b5782c5e22a9913efd998ffc58ecd0ddc8b480821bef6b59171-ol8_x86_64_appstream
gnutls-utils-3.6.14-7.el8_3.x86_64.rpmf81835dd1da9c8ba042d96c5eec2b91ee3c8ea9c9ed3732cc75efa9a16258bfe-ol8_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights