gnutls-3.7.2-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10801-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z gnutls-3.7.2-1.2 on GA media These are all security issues fixed in the gnutls-3.7.2-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10801 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-4790/ SUSE CVE CVE-2006-4790 page https://www.suse.com/security/cve/CVE-2008-1948/ SUSE CVE CVE-2008-1948 page https://www.suse.com/security/cve/CVE-2008-1949/ SUSE CVE CVE-2008-1949 page https://www.suse.com/security/cve/CVE-2008-1950/ SUSE CVE CVE-2008-1950 page https://www.suse.com/security/cve/CVE-2016-8610/ SUSE CVE CVE-2016-8610 page https://www.suse.com/security/cve/CVE-2017-7869/ SUSE CVE CVE-2017-7869 page https://www.suse.com/security/cve/CVE-2018-10846/ SUSE CVE CVE-2018-10846 page https://www.suse.com/security/cve/CVE-2019-3829/ SUSE CVE CVE-2019-3829 page https://www.suse.com/security/cve/CVE-2019-3836/ SUSE CVE CVE-2019-3836 page https://www.suse.com/security/cve/CVE-2020-13777/ SUSE CVE CVE-2020-13777 page https://www.suse.com/security/cve/CVE-2021-20232/ SUSE CVE CVE-2021-20232 page openSUSE Tumbleweed gnutls-3.7.2-1.2 gnutls-guile-3.7.2-1.2 libgnutls-dane-devel-3.7.2-1.2 libgnutls-dane0-3.7.2-1.2 libgnutls-devel-3.7.2-1.2 libgnutls-devel-32bit-3.7.2-1.2 libgnutls30-3.7.2-1.2 libgnutls30-32bit-3.7.2-1.2 libgnutls30-hmac-3.7.2-1.2 libgnutlsxx-devel-3.7.2-1.2 libgnutlsxx28-3.7.2-1.2 gnutls-3.7.2-1.2 as a component of openSUSE Tumbleweed gnutls-guile-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls-dane-devel-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls-dane0-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls-devel-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls-devel-32bit-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls30-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls30-32bit-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutls30-hmac-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutlsxx-devel-3.7.2-1.2 as a component of openSUSE Tumbleweed libgnutlsxx28-3.7.2-1.2 as a component of openSUSE Tumbleweed verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339. CVE-2006-4790 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4790.html CVE-2006-4790 https://bugzilla.suse.com/1107874 SUSE Bug 1107874 https://bugzilla.suse.com/206636 SUSE Bug 206636 The _gnutls_server_name_recv_params function in lib/ext_server_name.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hello message during extension handling, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a zero value for the length of Server Names, which leads to a buffer overflow in session resumption data in the pack_security_parameters function, aka GNUTLS-SA-2008-1-1. CVE-2008-1948 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1948.html CVE-2008-1948 https://bugzilla.suse.com/392947 SUSE Bug 392947 https://bugzilla.suse.com/670152 SUSE Bug 670152 The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 continues to process Client Hello messages within a TLS message after one has already been processed, which allows remote attackers to cause a denial of service (NULL dereference and crash) via a TLS message containing multiple Client Hello messages, aka GNUTLS-SA-2008-1-2. CVE-2008-1949 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1949.html CVE-2008-1949 https://bugzilla.suse.com/392947 SUSE Bug 392947 https://bugzilla.suse.com/670152 SUSE Bug 670152 Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service (buffer over-read and crash) via a certain integer value in the Random field in an encrypted Client Hello message within a TLS record with an invalid Record Length, which leads to an invalid cipher padding length, aka GNUTLS-SA-2008-1-3. CVE-2008-1950 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1950.html CVE-2008-1950 https://bugzilla.suse.com/392947 SUSE Bug 392947 https://bugzilla.suse.com/670152 SUSE Bug 670152 A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients. CVE-2016-8610 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-8610.html CVE-2016-8610 https://bugzilla.suse.com/1005878 SUSE Bug 1005878 https://bugzilla.suse.com/1005879 SUSE Bug 1005879 https://bugzilla.suse.com/1110018 SUSE Bug 1110018 https://bugzilla.suse.com/1120592 SUSE Bug 1120592 https://bugzilla.suse.com/1126909 SUSE Bug 1126909 https://bugzilla.suse.com/1148697 SUSE Bug 1148697 https://bugzilla.suse.com/982575 SUSE Bug 982575 GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_read function in opencdk/read-packet.c. This issue (which is a subset of the vendor's GNUTLS-SA-2017-3 report) is fixed in 3.5.10. CVE-2017-7869 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 critical 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7869.html CVE-2017-7869 https://bugzilla.suse.com/1034173 SUSE Bug 1034173 https://bugzilla.suse.com/1038337 SUSE Bug 1038337 https://bugzilla.suse.com/1049210 SUSE Bug 1049210 https://bugzilla.suse.com/1149679 SUSE Bug 1149679 A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets. CVE-2018-10846 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-10846.html CVE-2018-10846 https://bugzilla.suse.com/1105460 SUSE Bug 1105460 A vulnerability was found in gnutls versions from 3.5.8 before 3.6.7. A memory corruption (double free) vulnerability in the certificate verification API. Any client or server application that verifies X.509 certificates with GnuTLS 3.5.8 or later is affected. CVE-2019-3829 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-3829.html CVE-2019-3829 https://bugzilla.suse.com/1130681 SUSE Bug 1130681 It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages. CVE-2019-3836 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-3836.html CVE-2019-3836 https://bugzilla.suse.com/1130682 SUSE Bug 1130682 GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2, and an authentication bypass in TLS 1.3). The earliest affected version is 3.6.4 (2018-09-24) because of an error in a 2018-09-18 commit. Until the first key rotation, the TLS server always uses wrong data in place of an encryption key derived from an application. CVE-2020-13777 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 important 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13777.html CVE-2020-13777 https://bugzilla.suse.com/1172461 SUSE Bug 1172461 https://bugzilla.suse.com/1172506 SUSE Bug 1172506 A flaw was found in gnutls. A use after free issue in client_send_params in lib/ext/pre_shared_key.c may lead to memory corruption and other potential consequences. CVE-2021-20232 openSUSE Tumbleweed:gnutls-3.7.2-1.2 openSUSE Tumbleweed:gnutls-guile-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-dane0-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutls-devel-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-32bit-3.7.2-1.2 openSUSE Tumbleweed:libgnutls30-hmac-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx-devel-3.7.2-1.2 openSUSE Tumbleweed:libgnutlsxx28-3.7.2-1.2 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-20232.html CVE-2021-20232 https://bugzilla.suse.com/1183456 SUSE Bug 1183456