Описание
Security update for gnutls
This update for gnutls fixes the following issues:
- CVE-2023-0361: Fixed a Bleichenbacher oracle in the TLS RSA key exchange (bsc#1208143).
Список пакетов
Container suse/sle15:15.2
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-hmac-3.6.7-150200.14.25.2
Image SLES15-SP2-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-HPC-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-Azure
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-BYOS-Azure
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-BYOS-EC2-HVM
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-BYOS-GCE
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-EC2-HVM
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-SAP-GCE
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-CHOST-BYOS-Aliyun
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-CHOST-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-CHOST-BYOS-EC2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-CHOST-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-HPC-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-HPC-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-HPC-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Micro-5-1-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Micro-5-1-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Micro-5-2-BYOS-Azure
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-Micro-5-2-BYOS-GCE
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-SAP-BYOS-Azure
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-SAP-BYOS-EC2-HVM
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-SAP-BYOS-GCE
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP3-SAPCAL-Azure
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-32bit-3.6.7-150200.14.25.2
Image SLES15-SP3-SAPCAL-EC2-HVM
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-32bit-3.6.7-150200.14.25.2
Image SLES15-SP3-SAPCAL-GCE
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-32bit-3.6.7-150200.14.25.2
SUSE Linux Enterprise Micro 5.1
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-hmac-3.6.7-150200.14.25.2
SUSE Linux Enterprise Micro 5.2
gnutls-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-hmac-3.6.7-150200.14.25.2
SUSE Linux Enterprise Real Time 15 SP3
gnutls-3.6.7-150200.14.25.2
libgnutls-devel-3.6.7-150200.14.25.2
libgnutls30-3.6.7-150200.14.25.2
libgnutls30-32bit-3.6.7-150200.14.25.2
libgnutls30-hmac-3.6.7-150200.14.25.2
libgnutls30-hmac-32bit-3.6.7-150200.14.25.2
libgnutlsxx-devel-3.6.7-150200.14.25.2
libgnutlsxx28-3.6.7-150200.14.25.2
Ссылки
- Link for SUSE-SU-2023:0610-1
- E-Mail link for SUSE-SU-2023:0610-1
- SUSE Security Ratings
- SUSE Bug 1208143
- SUSE CVE CVE-2023-0361 page
Описание
A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a network in a Bleichenbacher style attack. To achieve a successful decryption the attacker would need to send a large amount of specially crafted messages to the vulnerable server. By recovering the secret from the ClientKeyExchange message, the attacker would be able to decrypt the application data exchanged over that connection.
Затронутые продукты
Container suse/sle15:15.2:libgnutls30-3.6.7-150200.14.25.2
Container suse/sle15:15.2:libgnutls30-hmac-3.6.7-150200.14.25.2
Image SLES15-SP2-BYOS-Azure:libgnutls30-3.6.7-150200.14.25.2
Image SLES15-SP2-HPC-BYOS-Azure:libgnutls30-3.6.7-150200.14.25.2
Ссылки
- CVE-2023-0361
- SUSE Bug 1208143