Описание
Security update for gnutls
This update for gnutls fixes the following issues:
-
CVE-2023-0361: Fixed a Bleichenbacher oracle in the TLS RSA key exchange (bsc#1208143).
-
FIPS: Make the jitterentropy calls thread-safe (bsc#1208146).
-
FIPS: GnuTLS DH/ECDH PCT public key regeneration (bsc#1207183).
Список пакетов
Container bci/php-apache:8
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container bci/php-apache:latest
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container bci/php-fpm:8
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container bci/php-fpm:latest
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container bci/php:8
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container bci/php:latest
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container suse/sles/15.5/cdi-importer:1.55.0
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container suse/sles/15.5/cdi-uploadserver:1.55.0
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container suse/sles/15.5/libguestfs-tools:0.58.0
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container suse/sles/15.5/virt-handler:0.58.0
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Container suse/sles/15.5/virt-launcher:0.58.0
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
Image SLES15-SP4
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Azure-Basic
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Azure-Standard
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-CHOST-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-CHOST-BYOS-Aliyun
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-CHOST-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-CHOST-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-CHOST-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-CHOST-BYOS-SAP-CCloud
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-EC2-ECS-HVM
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-HPC-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Hardened-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Hardened-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Hardened-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Hardened-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-Micro-5-4-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-BYOS
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-BYOS-Azure
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-BYOS-EC2
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-BYOS-GCE
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-Azure
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-BYOS
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-EC2
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAP-Hardened-GCE
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAPCAL
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAPCAL-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAPCAL-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SAPCAL-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SUSE-Rancher-Setup-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP4-SUSE-Rancher-Setup-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Azure-3P
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Azure-Basic
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Azure-Standard
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-CHOST-BYOS-Aliyun
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-CHOST-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-CHOST-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-CHOST-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-CHOST-BYOS-GDC
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-EC2-ECS-HVM
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-HPC-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-HPC-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-HPC-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-HPC-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-HPC-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-HPC-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Hardened-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Hardened-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Hardened-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-Azure-llc
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-Azure-ltd
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-EC2-llc
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Manager-Server-5-0-EC2-ltd
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-BYOS-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-Micro-5-5-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Azure-3P
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-BYOS-Azure
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-BYOS-EC2
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-BYOS-GCE
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-GCE
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Hardened-Azure
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Hardened-EC2
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAP-Hardened-GCE
gnutls-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAPCAL-Azure
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAPCAL-EC2
libgnutls30-3.7.3-150400.4.27.1
Image SLES15-SP5-SAPCAL-GCE
libgnutls30-3.7.3-150400.4.27.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
gnutls-3.7.3-150400.4.27.1
libgnutls-devel-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-32bit-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
libgnutls30-hmac-32bit-3.7.3-150400.4.27.1
libgnutlsxx-devel-3.7.3-150400.4.27.1
libgnutlsxx28-3.7.3-150400.4.27.1
openSUSE Leap 15.4
gnutls-3.7.3-150400.4.27.1
gnutls-guile-3.7.3-150400.4.27.1
libgnutls-devel-3.7.3-150400.4.27.1
libgnutls-devel-32bit-3.7.3-150400.4.27.1
libgnutls30-3.7.3-150400.4.27.1
libgnutls30-32bit-3.7.3-150400.4.27.1
libgnutls30-hmac-3.7.3-150400.4.27.1
libgnutls30-hmac-32bit-3.7.3-150400.4.27.1
libgnutlsxx-devel-3.7.3-150400.4.27.1
libgnutlsxx28-3.7.3-150400.4.27.1
Ссылки
- Link for SUSE-SU-2023:0475-1
- E-Mail link for SUSE-SU-2023:0475-1
- SUSE Security Ratings
- SUSE Bug 1207183
- SUSE Bug 1208143
- SUSE Bug 1208146
- SUSE CVE CVE-2023-0361 page
Описание
A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption the attacker would need to send a large amount of specially crafted messages to the vulnerable server. By recovering the secret from the ClientKeyExchange message, the attacker would be able to decrypt the application data exchanged over that connection.
Затронутые продукты
Container bci/php-apache:8:libgnutls30-3.7.3-150400.4.27.1
Container bci/php-apache:8:libgnutls30-hmac-3.7.3-150400.4.27.1
Container bci/php-apache:latest:libgnutls30-3.7.3-150400.4.27.1
Container bci/php-apache:latest:libgnutls30-hmac-3.7.3-150400.4.27.1
Ссылки
- CVE-2023-0361
- SUSE Bug 1208143