ELSA-2024-12135

ULN >
Oracle Linux Errata repository >
ELSA-2024-12135

ELSA-2024-12135 - gnutls security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-02-05

Description

[3.6.16-8.1_fips]
- Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length
as defined in FIPS 186-4 section B.3.2 [Orabug: 33200526]
- Allow bigger known RSA modulus sizes when calling
rsa_generate_fips186_4_keypair directly [Orabug: 33200526]
- Change Epoch from 1 to 10

[3.6.16-8.1]
- auth/rsa-psk: minimize branching after decryption (RHEL-21550)

Related CVEs

CVE-2024-0553

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	gnutls-3.6.16-8.el8_9.1_fips.src.rpm	f1c77ac373303df316e37dcadc9c2308abb97828ff48294a8f15a75b5d636daf	-	ol8_aarch64_u4_security_validation
	gnutls-3.6.16-8.el8_9.1_fips.aarch64.rpm	987452fe77326ac4b9a12484b95d015307906037d648866322bed4c6203199f4	-	ol8_aarch64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.1_fips.aarch64.rpm	6226c09d1295dcb944f4cdbe95ea5ae1ac3dc3559af819367b8150d5f92731a6	-	ol8_aarch64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.1_fips.aarch64.rpm	85499ea7ffe388118a4d3364886fe7e645a0c5a3ba8445aa376deb84933498f5	-	ol8_aarch64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.1_fips.aarch64.rpm	2a278d3f3a1f25a0726f49b15c80bb71698c8f78be85e170dc692d00a799ccb9	-	ol8_aarch64_u4_security_validation
	gnutls-utils-3.6.16-8.el8_9.1_fips.aarch64.rpm	a2e6afd4a0696a0b48f77e85ea032e409b78aec5ebbb1829b20548c5a465f726	-	ol8_aarch64_u4_security_validation

Oracle Linux 8 (x86_64)	gnutls-3.6.16-8.el8_9.1_fips.src.rpm	f1c77ac373303df316e37dcadc9c2308abb97828ff48294a8f15a75b5d636daf	-	ol8_x86_64_u4_security_validation
	gnutls-3.6.16-8.el8_9.1_fips.i686.rpm	7f84729aaa11146a0ae1b408190d2adea875ee11975452d88027f7647a76901c	-	ol8_x86_64_u4_security_validation
	gnutls-3.6.16-8.el8_9.1_fips.x86_64.rpm	645d830a1e6e6062b6a1c82cfa9bf754b21bbf9eebed45db2bd42fca9ffb0341	-	ol8_x86_64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.1_fips.i686.rpm	980791c3c7b3b2d2ed13a92994fcb8fb0b31a915de3f8197eaba315681a31096	-	ol8_x86_64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.1_fips.x86_64.rpm	9dfebb1300225e9d52793e5a7ef3a09261cd60eae0bfe150c9d1bda846001f7d	-	ol8_x86_64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.1_fips.i686.rpm	7591df795a7fea6682db44e2e82f71897663bd7c6dbf28259b3435a5702a915f	-	ol8_x86_64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.1_fips.x86_64.rpm	abaad48720909e1e19b827b33477ffd022da3adc3326a6b8fb069a60b9dd3647	-	ol8_x86_64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.1_fips.i686.rpm	c30b11a4929e13bb77f456601e59cdf8ded0e2f36e538a54ced8e9c5171de92c	-	ol8_x86_64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.1_fips.x86_64.rpm	ca3ff36f7ef70a35cc4754dccefc54b940f2ed7b69dec6bad699794c8a722e79	-	ol8_x86_64_u4_security_validation
	gnutls-utils-3.6.16-8.el8_9.1_fips.x86_64.rpm	f0178560c923429c3559f89c0bc0f6cf4988e2338e4a3bc59eb29e0f56147f90	-	ol8_x86_64_u4_security_validation

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691