A gnutls security and bug fix update has been released for AlmaLinux 8.

ALSA-2023:1569 Moderate: gnutls security and bug fix update

Type:
security

Severity:
moderate

Release date:
2023-04-05

Description
Security Fix(es):
* gnutls: timing side-channel in the TLS RSA key exchange code (CVE-2023-0361)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* trap invalid opcode ip:7feef81809fe sp:7fee997419c0 error:0 in libgnutls.so.30.28.27feef8040000+1dd000 (BZ#2131152)

References:
RHSA-2023:1569
CVE-2023-0361
ALSA-2023:1569

Updates packages:
gnutls-c++-3.6.16-6.el8_7.i686.rpm
gnutls-devel-3.6.16-6.el8_7.i686.rpm
gnutls-dane-3.6.16-6.el8_7.i686.rpm
gnutls-3.6.16-6.el8_7.i686.rpm
gnutls-3.6.16-6.el8_7.aarch64.rpm
gnutls-3.6.16-6.el8_7.x86_64.rpm
gnutls-utils-3.6.16-6.el8_7.aarch64.rpm
gnutls-devel-3.6.16-6.el8_7.aarch64.rpm
gnutls-dane-3.6.16-6.el8_7.aarch64.rpm
gnutls-c++-3.6.16-6.el8_7.aarch64.rpm
gnutls-3.6.16-6.el8_7.ppc64le.rpm
gnutls-3.6.16-6.el8_7.s390x.rpm
gnutls-utils-3.6.16-6.el8_7.x86_64.rpm
gnutls-dane-3.6.16-6.el8_7.x86_64.rpm
gnutls-c++-3.6.16-6.el8_7.x86_64.rpm
gnutls-devel-3.6.16-6.el8_7.x86_64.rpm
gnutls-dane-3.6.16-6.el8_7.s390x.rpm
gnutls-utils-3.6.16-6.el8_7.s390x.rpm
gnutls-devel-3.6.16-6.el8_7.s390x.rpm
gnutls-c++-3.6.16-6.el8_7.s390x.rpm
gnutls-c++-3.6.16-6.el8_7.ppc64le.rpm
gnutls-utils-3.6.16-6.el8_7.ppc64le.rpm
gnutls-devel-3.6.16-6.el8_7.ppc64le.rpm
gnutls-dane-3.6.16-6.el8_7.ppc64le.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2023:1569 Moderate: gnutls security and bug fix update