Release date:
2024-08-26 21:00:54 UTC
Description:
- Keep the broken pkcs11 tests disabled.
- Added CVE-2024-0567 PoC test.
- CVE-2023-5981-pre1: improve level of randomness for each operations,
always use _gnutls_switch_lib_state for pk wrappers.
- CVE-2023-5981-pre2: add constant time/cache operations to prevent
or minimaze timining or cache side channel attacks.
- CVE-2023-5981: removes branching that depends on secret data to
prevent potential side-channel attack.
- CVE-2024-0553: minimize branching after decryption.
Updated packages:
-
gnutls-3.3.29-9.el7_6.tuxcare.els1.i686.rpm
sha:1d0cc5f59381abd4dad58e360a2985f96ced2d639af3e31aa63bfe1401166c60
-
gnutls-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm
sha:6df6680faab964953f9b8c8c58f7d3788e26eb6340f206f8994ffa08381522f9
-
gnutls-c++-3.3.29-9.el7_6.tuxcare.els1.i686.rpm
sha:f9c6aea834754794640f31d91fcd7c2041c1881d2dcd6966e771f040ed72ef88
-
gnutls-c++-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm
sha:92eefcc3edb40e866d06059bba56f1db1d647dad4ca4a946adbb4513183ba575
-
gnutls-dane-3.3.29-9.el7_6.tuxcare.els1.i686.rpm
sha:7129353069ae40656607ab166c89f7786a1d19f37e14df9a403fb24b0e1f4e19
-
gnutls-dane-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm
sha:1f4ff4e3123f663a640048f0fb618e51becb1c58502a45bdcb1a2f951de07a4d
-
gnutls-devel-3.3.29-9.el7_6.tuxcare.els1.i686.rpm
sha:d6726d6b4186eab84b780d0ca89ca70dafd32ab492cb553fcc3f14cb1102d7c7
-
gnutls-devel-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm
sha:cb92339667cfb5037b277e5ee0d09211d3846dbb2511584e3b7a8fb761b5ac79
-
gnutls-utils-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm
sha:ee57a563a2d50eb7d5270dc92af384c300d48faafeb516f0bc9732da53932f14
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
