Release date:
2026-05-21 09:26:58 UTC
Description:
* SECURITY UPDATE: nameConstraints case-sensitive comparison bypass
- debian/patches/CVE-2026-3833.patch: perform case-insensitive comparison
of dNSName and rfc822Name domain labels in X.509 nameConstraints
processing, fixing excludedSubtrees / permittedSubtrees bypass via
letter-casing in the SAN.
- CVE-2026-3833
Updated packages:
-
gnutls-bin_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:d2855ae0e143a03e129022cfeb1c971d29f368b1
-
gnutls-doc_3.4.10-4ubuntu1.9+tuxcare.els2_all.deb
sha:7f85668e1e9905f43f53448b85a969150fa17830
-
guile-gnutls_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:f831d00ecb71aaa8f250fe97a4ee0f44d0fe182a
-
libgnutls-dev_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:fe065f2c8ae5b007765fc35d51820dc440831b22
-
libgnutls-openssl27_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:a6dbdc4c966cf3ca498b933622e854a3c2824055
-
libgnutls28-dev_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:c91596a9aebabb5b079b9bdaa7d49a73a162777d
-
libgnutls30_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:d3abd41d860ff9e25bbc91a331fc97a0228dca2f
-
libgnutlsxx28_3.4.10-4ubuntu1.9+tuxcare.els2_amd64.deb
sha:d343877423d65a0837d6570e5590094c4de0e40f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
