Release date:
2026-07-08 14:14:29 UTC
Description:
- CVE-2026-42009: fix DTLS handshake_compare qsort comparator contract violation (undefined behaviour)
- CVE-2026-33846: add DTLS reassembly fragment length/bounds checks (heap overwrite)
- CVE-2026-42012: URI subjectAltName now precludes Common Name fallback in hostname verification
- CVE-2026-42013: oversized subjectAltName now precludes Common Name fallback in hostname verification
- CVE-2026-5260: guard PKCS#11 RSA decryption against short-ciphertext heap overread
Updated packages:
-
gnutls-3.3.29-9.el7_6.tuxcare.els5.i686.rpm
sha:a1fe276e64ae68aaa33732398bc44b6d138030957e948daa7ed4d9df7cda91de
-
gnutls-3.3.29-9.el7_6.tuxcare.els5.x86_64.rpm
sha:a607b7bfa58c6346253585d7cd5c5019d951655acfa60397fbe0e5312bbb3ad2
-
gnutls-c++-3.3.29-9.el7_6.tuxcare.els5.i686.rpm
sha:1c83d5ac69aa7127e37b1f4e20cb1509da104c62ff9516d147935af555637cb2
-
gnutls-c++-3.3.29-9.el7_6.tuxcare.els5.x86_64.rpm
sha:94bda2b0dc97e033f665251665ed176cdcdbbd3019559417e25a2fdd9b5b7957
-
gnutls-dane-3.3.29-9.el7_6.tuxcare.els5.i686.rpm
sha:e02b4908aaf606ed0f0704d4a8aba3df01ff6953ad781ca7f50bb0b8bc3ea372
-
gnutls-dane-3.3.29-9.el7_6.tuxcare.els5.x86_64.rpm
sha:af4320bc36934b5c773674d64e8daa6fdec5982867b8a9f47e7293363685ab6b
-
gnutls-devel-3.3.29-9.el7_6.tuxcare.els5.i686.rpm
sha:adcb2fd72ed5cbe268ed9fc8519918cf6b2766354ac2614e62fe8d9c25cbe3dd
-
gnutls-devel-3.3.29-9.el7_6.tuxcare.els5.x86_64.rpm
sha:fd67d7f88e54629e5aaf6a070eb95085bd8be6535b22b21e044a89fc66b8c44f
-
gnutls-utils-3.3.29-9.el7_6.tuxcare.els5.x86_64.rpm
sha:c9ef9adc47effab69ba5eeac92a0769e0398be1813358a9aad47b69d80d667c7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.