ELSA-2024-1784

ULN >
Oracle Linux Errata repository >
ELSA-2024-1784

ELSA-2024-1784 - gnutls security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-04-15

Description

[3.6.16-8.3_fips]
- Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length
as defined in FIPS 186-4 section B.3.2 [Orabug: 33200526]
- Allow bigger known RSA modulus sizes when calling
rsa_generate_fips186_4_keypair directly [Orabug: 33200526]
- Change Epoch from 1 to 10_fips

[3.6.16-8.3]
- Fix memleak with older GMP (RHEL-28957)

[3.6.16-8.2]
- Fix timing side-channel in deterministic ECDSA (RHEL-28957)

[3.6.16-8.1]
- auth/rsa-psk: minimize branching after decryption (RHEL-21586)

Related CVEs

CVE-2024-28834

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	gnutls-3.6.16-8.el8_9.3.src.rpm	34e0230dd87d37bf3494535a333371f8	-	ol8_aarch64_appstream
	gnutls-3.6.16-8.el8_9.3.src.rpm	34e0230dd87d37bf3494535a333371f8	-	ol8_aarch64_baseos_latest
	gnutls-3.6.16-8.el8_9.3.src.rpm	34e0230dd87d37bf3494535a333371f8	-	ol8_aarch64_u9_baseos_patch
	gnutls-3.6.16-8.el8_9.3_fips.src.rpm	706f701f08988393ba49e14ffabe098d	-	ol8_aarch64_u4_security_validation
	gnutls-3.6.16-8.el8_9.3.aarch64.rpm	7d7a25f40e490dfcb569a383564be033	-	ol8_aarch64_baseos_latest
	gnutls-3.6.16-8.el8_9.3.aarch64.rpm	7d7a25f40e490dfcb569a383564be033	-	ol8_aarch64_u9_baseos_patch
	gnutls-3.6.16-8.el8_9.3_fips.aarch64.rpm	3cf87228177513bdd52c818e1ba65712	-	ol8_aarch64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.3.aarch64.rpm	6307f33697c57bc980e6d09b4417d0e6	-	ol8_aarch64_appstream
	gnutls-c++-3.6.16-8.el8_9.3_fips.aarch64.rpm	a5a324580f3385e7a9ffccd83563000a	-	ol8_aarch64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.3.aarch64.rpm	867b7454c81d0de0f660bfc0fbc38feb	-	ol8_aarch64_appstream
	gnutls-dane-3.6.16-8.el8_9.3_fips.aarch64.rpm	f0d0deb453065cfb546454dff3d80ab8	-	ol8_aarch64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.3.aarch64.rpm	c140333acc0d134264a9a46fc046a5ce	-	ol8_aarch64_appstream
	gnutls-devel-3.6.16-8.el8_9.3_fips.aarch64.rpm	02f0784ff7a188cca706f93c14ee1e37	-	ol8_aarch64_u4_security_validation
	gnutls-utils-3.6.16-8.el8_9.3.aarch64.rpm	3ceb899e19ef429dc85158f9586b96a9	-	ol8_aarch64_appstream
	gnutls-utils-3.6.16-8.el8_9.3_fips.aarch64.rpm	c62a64b5d4bd11c1f8e9139aef1333e6	-	ol8_aarch64_u4_security_validation

Oracle Linux 8 (x86_64)	gnutls-3.6.16-8.el8_9.3.src.rpm	34e0230dd87d37bf3494535a333371f8	-	ol8_x86_64_appstream
	gnutls-3.6.16-8.el8_9.3.src.rpm	34e0230dd87d37bf3494535a333371f8	-	ol8_x86_64_baseos_latest
	gnutls-3.6.16-8.el8_9.3.src.rpm	34e0230dd87d37bf3494535a333371f8	-	ol8_x86_64_u9_baseos_patch
	gnutls-3.6.16-8.el8_9.3_fips.src.rpm	706f701f08988393ba49e14ffabe098d	-	ol8_x86_64_u4_security_validation
	gnutls-3.6.16-8.el8_9.3.i686.rpm	ca43f433f371fa21ff78ee881b606df9	-	ol8_x86_64_baseos_latest
	gnutls-3.6.16-8.el8_9.3.i686.rpm	ca43f433f371fa21ff78ee881b606df9	-	ol8_x86_64_u9_baseos_patch
	gnutls-3.6.16-8.el8_9.3.x86_64.rpm	e5ce3a15a572d614747c52b5f4cf8b14	-	ol8_x86_64_baseos_latest
	gnutls-3.6.16-8.el8_9.3.x86_64.rpm	e5ce3a15a572d614747c52b5f4cf8b14	-	ol8_x86_64_u9_baseos_patch
	gnutls-3.6.16-8.el8_9.3_fips.i686.rpm	09990986f3634eb68bcfaf263524a651	-	ol8_x86_64_u4_security_validation
	gnutls-3.6.16-8.el8_9.3_fips.x86_64.rpm	cb42269a65b9bb6b65d6f143e783a880	-	ol8_x86_64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.3.i686.rpm	f2bdecd18efd836688cf4b2c1b9aca4d	-	ol8_x86_64_appstream
	gnutls-c++-3.6.16-8.el8_9.3.x86_64.rpm	06f4210a7623327fd5b8771371c25df0	-	ol8_x86_64_appstream
	gnutls-c++-3.6.16-8.el8_9.3_fips.i686.rpm	6bbf6057396c60b736a4b0ded078e56c	-	ol8_x86_64_u4_security_validation
	gnutls-c++-3.6.16-8.el8_9.3_fips.x86_64.rpm	88a80034f0ac43d2de29694d5f6b0994	-	ol8_x86_64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.3.i686.rpm	2cb56c69b85761d10b354df77cf4900d	-	ol8_x86_64_appstream
	gnutls-dane-3.6.16-8.el8_9.3.x86_64.rpm	fd48fbcbfbb6baea098417b1f6294458	-	ol8_x86_64_appstream
	gnutls-dane-3.6.16-8.el8_9.3_fips.i686.rpm	353961c633a18c346f09ced8c81cd0b1	-	ol8_x86_64_u4_security_validation
	gnutls-dane-3.6.16-8.el8_9.3_fips.x86_64.rpm	5695bb4deddf5f11870c6236a0ae4cf8	-	ol8_x86_64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.3.i686.rpm	0bb12dc4bdd92659d49feb30341ba98f	-	ol8_x86_64_appstream
	gnutls-devel-3.6.16-8.el8_9.3.x86_64.rpm	5ed4d34d82c3b780d5af8833cc511beb	-	ol8_x86_64_appstream
	gnutls-devel-3.6.16-8.el8_9.3_fips.i686.rpm	22ac42f0360059b49c02fba4146bff3b	-	ol8_x86_64_u4_security_validation
	gnutls-devel-3.6.16-8.el8_9.3_fips.x86_64.rpm	4c9b573c9ecb14edeac54f36ed7a0a1a	-	ol8_x86_64_u4_security_validation
	gnutls-utils-3.6.16-8.el8_9.3.x86_64.rpm	db7773e81e1effe3c65ab3c8941f2ae5	-	ol8_x86_64_appstream
	gnutls-utils-3.6.16-8.el8_9.3_fips.x86_64.rpm	c10ba9e1fec5b230221f3688d8303892	-	ol8_x86_64_u4_security_validation

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691