ELSA-2024-0155

Опубликовано: 11 янв. 2024

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2024-0155: gnutls security update (MODERATE)

[3.6.16-8]

timing side-channel in the RSA-PSK authentication (CVE-2023-5981)

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

gnutls

3.6.16-8.el8_9

gnutls-c++

3.6.16-8.el8_9

gnutls-dane

3.6.16-8.el8_9

gnutls-devel

3.6.16-8.el8_9

gnutls-utils

3.6.16-8.el8_9

Oracle Linux x86_64

gnutls

3.6.16-8.el8_9

gnutls-c++

3.6.16-8.el8_9

gnutls-dane

3.6.16-8.el8_9

gnutls-devel

3.6.16-8.el8_9

gnutls-utils

3.6.16-8.el8_9

Связанные CVE

CVE-2023-5981

Ссылки на источники

Связанные уязвимости

CVE-2023-5981

CVSS3: 5.9

ubuntu

больше 1 года назад

A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.

CVE-2023-5981

CVSS3: 5.9

redhat

больше 1 года назад

A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.

CVE-2023-5981

CVSS3: 5.9

nvd

больше 1 года назад

A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.

CVE-2023-5981

CVSS3: 5.9

msrc

8 месяцев назад

Описание отсутствует

CVE-2023-5981

CVSS3: 5.9

debian

больше 1 года назад

A vulnerability was found that the response times to malformed ciphert ...