ELSA-2026-20611

ULN >
Oracle Linux Errata repository >
ELSA-2026-20611

ELSA-2026-20611 - gnutls security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-05-27

Description

[3.6.16-8.6]
- Fix CVE-2026-33846 (DTLS fragment reassembly, High, heap overwrite)
- Fix CVE-2026-42009 (DTLS fragment reassembly, High, undefined behaviour)
- Fix CVE-2026-33845 (DTLS fragment reassembly, High, heap overread)
- Fix CVE-2026-42010 (PSK authentication, High, authentication bypass)
- Fix CVE-2026-3833 (Name constraints, Medium, name constraint bypass)
- Fix CVE-2026-42011 (Name constraints, Medium, name constraint bypass)
- Fix CVE-2026-42012 (CN fallback, Medium, certificate misuse)
- Fix CVE-2026-42013 (CN fallback, Medium, certificate misuse)
- Fix CVE-2026-42014 (PKCS#11 PIN change, Medium, use-after-free)
- Fix CVE-2026-5260 (PKCS#11 RSA, Medium, heap overread)
- Fix CVE-2026-42015 (PKCS#12 appending, Low, heap overwrite)
- Fix upstream security issue #1808 (PSK rehandshake)
- Fix upstream security issue #1810 (EKU OID prefix match)
- Fix upstream security issue #1818 (RSA correctness, OpenSSL format import)
- Fix upstream security issue #1819 (PKCS#11 trust removal error path)
- Fix upstream security issue #1817 (session parameter loading robustness)

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	gnutls-3.6.16-8.el8_10.6.src.rpm	30f1d5a3163559f1065082240f526a48863dae9f64ac27d7f0a7883eda31c290	-	ol8_aarch64_appstream
	gnutls-3.6.16-8.el8_10.6.src.rpm	30f1d5a3163559f1065082240f526a48863dae9f64ac27d7f0a7883eda31c290	-	ol8_aarch64_baseos_latest
	gnutls-3.6.16-8.el8_10.6.src.rpm	30f1d5a3163559f1065082240f526a48863dae9f64ac27d7f0a7883eda31c290	-	ol8_aarch64_u10_baseos_patch
	gnutls-3.6.16-8.el8_10.6.aarch64.rpm	8a62782b8e90070f0a8415e9298136a87787deff5c855b3a6a3d645980b09d21	-	ol8_aarch64_baseos_latest
	gnutls-3.6.16-8.el8_10.6.aarch64.rpm	8a62782b8e90070f0a8415e9298136a87787deff5c855b3a6a3d645980b09d21	-	ol8_aarch64_u10_baseos_patch
	gnutls-c++-3.6.16-8.el8_10.6.aarch64.rpm	58dc26caaf57b5464dd68eca9f3f1d8dc710ae4268470fafa6d737666fedb457	-	ol8_aarch64_appstream
	gnutls-dane-3.6.16-8.el8_10.6.aarch64.rpm	2f285ddadf5f0392073363a8ba9f84f8ad38839cb5ba46fbf340e4f67e8e4ee8	-	ol8_aarch64_appstream
	gnutls-devel-3.6.16-8.el8_10.6.aarch64.rpm	4d18d4822a1ac2d3144b59a80461300314f7114dfa0de092a9128050e1fa909c	-	ol8_aarch64_appstream
	gnutls-utils-3.6.16-8.el8_10.6.aarch64.rpm	cab401dfcdb6b93668b39dd9ae2e996363fb00fed2b9c071e438ae7423628340	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	gnutls-3.6.16-8.el8_10.6.src.rpm	30f1d5a3163559f1065082240f526a48863dae9f64ac27d7f0a7883eda31c290	-	ol8_x86_64_appstream
	gnutls-3.6.16-8.el8_10.6.src.rpm	30f1d5a3163559f1065082240f526a48863dae9f64ac27d7f0a7883eda31c290	-	ol8_x86_64_baseos_latest
	gnutls-3.6.16-8.el8_10.6.src.rpm	30f1d5a3163559f1065082240f526a48863dae9f64ac27d7f0a7883eda31c290	-	ol8_x86_64_u10_baseos_patch
	gnutls-3.6.16-8.el8_10.6.i686.rpm	d9d278ecd1959b0e1bfe03a39ca286ec391c7b5492f12f1761599a498cf3640f	-	ol8_x86_64_baseos_latest
	gnutls-3.6.16-8.el8_10.6.i686.rpm	d9d278ecd1959b0e1bfe03a39ca286ec391c7b5492f12f1761599a498cf3640f	-	ol8_x86_64_u10_baseos_patch
	gnutls-3.6.16-8.el8_10.6.x86_64.rpm	a958df26cccbaa6d14e516e875bd9d22e382f41018684800506b1b7d8c50214f	-	ol8_x86_64_baseos_latest
	gnutls-3.6.16-8.el8_10.6.x86_64.rpm	a958df26cccbaa6d14e516e875bd9d22e382f41018684800506b1b7d8c50214f	-	ol8_x86_64_u10_baseos_patch
	gnutls-c++-3.6.16-8.el8_10.6.i686.rpm	25ce68f59158e50695ae060545060025f197501cfde767a991f6f0fc98d006fd	-	ol8_x86_64_appstream
	gnutls-c++-3.6.16-8.el8_10.6.x86_64.rpm	2fcdf768c3c391d6ce89403d504b9eb2e375a59f6e8ebc548a9f76a37060259f	-	ol8_x86_64_appstream
	gnutls-dane-3.6.16-8.el8_10.6.i686.rpm	0100e3b6ef9db3c3854d10546818bf27dda65f1f94f8a4ba9816ebe0ee45e15c	-	ol8_x86_64_appstream
	gnutls-dane-3.6.16-8.el8_10.6.x86_64.rpm	b54e70b03f75106c2541301967ecc2cae321df3a09a7cc9f623ec0142eee2089	-	ol8_x86_64_appstream
	gnutls-devel-3.6.16-8.el8_10.6.i686.rpm	9459c0c1f094ebafc571e80e6455dec6ded5d07555ced00269fa665ab3ac0d92	-	ol8_x86_64_appstream
	gnutls-devel-3.6.16-8.el8_10.6.x86_64.rpm	fdb05a21c0d9f989cccbc73350a3e04ade14808bde1851c35e79b9fd6047f40e	-	ol8_x86_64_appstream
	gnutls-utils-3.6.16-8.el8_10.6.x86_64.rpm	54cb85f917b92ea9f6440484b018c4f3fd9b5f575d65d8b57db9025893c0aa76	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691