Oracle Errata System
Oracle Linux
5.11
2026-06-03T10:34:08
ELSA-2026-20611: gnutls security update (IMPORTANT)
Oracle Linux 8
[3.6.16-8.6]
- Fix CVE-2026-33846 (DTLS fragment reassembly, High, heap overwrite)
- Fix CVE-2026-42009 (DTLS fragment reassembly, High, undefined behaviour)
- Fix CVE-2026-33845 (DTLS fragment reassembly, High, heap overread)
- Fix CVE-2026-42010 (PSK authentication, High, authentication bypass)
- Fix CVE-2026-3833 (Name constraints, Medium, name constraint bypass)
- Fix CVE-2026-42011 (Name constraints, Medium, name constraint bypass)
- Fix CVE-2026-42012 (CN fallback, Medium, certificate misuse)
- Fix CVE-2026-42013 (CN fallback, Medium, certificate misuse)
- Fix CVE-2026-42014 (PKCS#11 PIN change, Medium, use-after-free)
- Fix CVE-2026-5260 (PKCS#11 RSA, Medium, heap overread)
- Fix CVE-2026-42015 (PKCS#12 appending, Low, heap overwrite)
- Fix upstream security issue #1808 (PSK rehandshake)
- Fix upstream security issue #1810 (EKU OID prefix match)
- Fix upstream security issue #1818 (RSA correctness, OpenSSL format import)
- Fix upstream security issue #1819 (PKCS#11 trust removal error path)
- Fix upstream security issue #1817 (session parameter loading robustness)
IMPORTANT
Copyright 2026 Oracle, Inc.
CVE-2026-33845
CVE-2026-33846
CVE-2026-3833
CVE-2026-42009
CVE-2026-42010
CVE-2026-42011
CVE-2026-42012
CVE-2026-42013
CVE-2026-42014
CVE-2026-42015
CVE-2026-5260
cpe:/o:oracle:linux:8::baseos_latest
cpe:/o:oracle:linux:8:10:baseos_patch
cpe:/a:oracle:linux:8::appstream
gnutls-dane
oraclelinux-release
gnutls-utils
gnutls-devel
gnutls-c++
gnutls
82562ea9ad986da3
^8
aarch64
0:3.6.16-8.el8_10.6
x86_64