SUSE-SU-2018:2842-1 -- SLES gnutls, libgnutls-openssl27, libgnutls28ID: oval:org.secpod.oval:def:89002492 | Date: (C)2021-02-26 (M)2023-02-20 |
Class: PATCH | Family: unix |
This update for gnutls fixes the following issues: Security issues fixed: - Improved mitigations against Lucky 13 class of attacks - quot;Just in Timequot; PRIME + PROBE cache-based side channel attack can lead to plaintext recovery - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant - HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls - The _asn1_check_identifier function in Libtasn1 caused a NULL pointer dereference and crash
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
Product: |
gnutls |
libgnutls-openssl27 |
libgnutls28 |