Stay Connected:

ELSA-2024-12364

ELSA-2024-12364 - gnutls security update

Type:SECURITY
Severity:MODERATE
Release Date:2024-05-08

Description


[3.8.3-4_fips]
- Add FIPS package change: add fips suffix to Release and
set Epoch to 10 [Orabug: 35925409]
- Update FIPS module name for Oracle Linux [Orabug: 35925409]

[3.8.3-4]
- Bump release to ensure el9 package is greater than el9_* packages

[3.8.3-3]
- Bump release to ensure el9 package is greater than el9_* packages

[3.8.3-2]
- Fix timing side-channel in deterministic ECDSA (RHEL-28959)
- Fix potential crash during chain building/verification (RHEL-28954)

[3.8.3-1]
- Update to gnutls 3.8.3 (RHEL-14891)

[3.8.2-3]
- Skip KTLS test exercising ChaCha20-Poly1305 in TLS 1.3 as well (RHEL-18498)

[3.8.2-2]
- Bump nettle dependency to 3.9.1
- Skip KTLS test exercising ChaCha20-Poly1305 in TLS 1.2 (RHEL-18498)

[3.8.2-1]
- Update to gnutls 3.8.2 (RHEL-14891)


Related CVEs


CVE-2024-28834
CVE-2024-28835

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) gnutls-3.8.3-4.el9_4_fips.src.rpm4320091b62051e76fc12c010671c7ae7-ol9_aarch64_u3_security_validation
gnutls-3.8.3-4.el9_4_fips.aarch64.rpm27faefdd0b0d4605e568bac869a3aefd-ol9_aarch64_u3_security_validation
gnutls-c++-3.8.3-4.el9_4_fips.aarch64.rpm5d21f65e509cb4442e1a3c0cc9e690c2-ol9_aarch64_u3_security_validation
gnutls-dane-3.8.3-4.el9_4_fips.aarch64.rpm0597b08b396b37f123c0cb168201d53e-ol9_aarch64_u3_security_validation
gnutls-devel-3.8.3-4.el9_4_fips.aarch64.rpm94d03771b43ba2b73727eab580d0c8eb-ol9_aarch64_u3_security_validation
gnutls-utils-3.8.3-4.el9_4_fips.aarch64.rpm934ae4a9392efddbed1766332b917d15-ol9_aarch64_u3_security_validation
Oracle Linux 9 (x86_64) gnutls-3.8.3-4.el9_4_fips.src.rpm4320091b62051e76fc12c010671c7ae7-ol9_x86_64_u3_security_validation
gnutls-3.8.3-4.el9_4_fips.i686.rpma66964f7d1523ee4dbd750b6b7c1988e-ol9_x86_64_u3_security_validation
gnutls-3.8.3-4.el9_4_fips.x86_64.rpmc5038afddec103440bfa8a5f89a418f0-ol9_x86_64_u3_security_validation
gnutls-c++-3.8.3-4.el9_4_fips.i686.rpmcaa0c184a6a8827ae72700ef95315b0e-ol9_x86_64_u3_security_validation
gnutls-c++-3.8.3-4.el9_4_fips.x86_64.rpm7ab004fd8b61f4fc7b2ad2e16a051677-ol9_x86_64_u3_security_validation
gnutls-dane-3.8.3-4.el9_4_fips.i686.rpm7e9671a6ac490cd392ec7c41badb52af-ol9_x86_64_u3_security_validation
gnutls-dane-3.8.3-4.el9_4_fips.x86_64.rpm6f923b8caaa035197bfe7063d840092a-ol9_x86_64_u3_security_validation
gnutls-devel-3.8.3-4.el9_4_fips.i686.rpme59655922b2557c24e7ea2dfecd9fc52-ol9_x86_64_u3_security_validation
gnutls-devel-3.8.3-4.el9_4_fips.x86_64.rpmdc33767fef15f7f851d1cbf5531f0f91-ol9_x86_64_u3_security_validation
gnutls-utils-3.8.3-4.el9_4_fips.x86_64.rpm447395b34e6f91ec32d668f9429ed61f-ol9_x86_64_u3_security_validation



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights