SUSE-SU-2024:1271-1 -- SLES gnutls, libgnutlsxx28, libgnutls-devel, libgnutlsxx-devel, libgnutls30ID: oval:org.secpod.oval:def:89051754 | Date: (C)2024-04-26 (M)2024-05-09 |
Class: PATCH | Family: unix |
This update for gnutls fixes the following issues: * CVE-2024-28834: Fixed side-channel in the deterministic ECDSA * CVE-2024-28835: Fixed denial of service during certificate chain verification Other fixes: \- jitterentropy: Release the memory of the entropy collector when using jitterentropy with phtreads as there is also a pre-intitization done in the main thread
Platform: |
SUSE Linux Enterprise Desktop 15 SP5 |
SUSE Linux Enterprise Server 15 SP5 |
Product: |
gnutls |
libgnutlsxx28 |
libgnutls-devel |
libgnutlsxx-devel |
libgnutls30 |