Описание
Security update for gnutls
This update for gnutls fixes the following issues:
- CVE-2024-0553: Fixed insufficient mitigation for side channel attack in RSA-PSK, aka CVE-2023-5981 (bsc#1218865).
Список пакетов
Container suse/sle15:15.2
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-BYOS-Azure
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-BYOS-GCE
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-CHOST-BYOS-Azure
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-CHOST-BYOS-EC2
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-CHOST-BYOS-GCE
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-HPC-BYOS-Azure
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-HPC-BYOS-GCE
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-Micro-5-1-BYOS-Azure
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-Micro-5-1-BYOS-GCE
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-Micro-5-2-BYOS-Azure
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-Micro-5-2-BYOS-GCE
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-SAP-BYOS-Azure
gnutls-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
gnutls-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-SAP-BYOS-GCE
gnutls-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP3-SAPCAL-Azure
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
Image SLES15-SP3-SAPCAL-EC2-HVM
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
Image SLES15-SP3-SAPCAL-GCE
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
SUSE Enterprise Storage 7.1
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls-devel-32bit-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls-devel-32bit-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
SUSE Linux Enterprise Micro 5.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
SUSE Linux Enterprise Micro 5.2
gnutls-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
SUSE Linux Enterprise Server 15 SP2-LTSS
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
SUSE Linux Enterprise Server 15 SP3-LTSS
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls-devel-32bit-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
gnutls-3.6.7-150200.14.31.1
libgnutls-devel-3.6.7-150200.14.31.1
libgnutls-devel-32bit-3.6.7-150200.14.31.1
libgnutls30-3.6.7-150200.14.31.1
libgnutls30-32bit-3.6.7-150200.14.31.1
libgnutls30-hmac-3.6.7-150200.14.31.1
libgnutls30-hmac-32bit-3.6.7-150200.14.31.1
libgnutlsxx-devel-3.6.7-150200.14.31.1
libgnutlsxx28-3.6.7-150200.14.31.1
Ссылки
- Link for SUSE-SU-2024:0860-1
- E-Mail link for SUSE-SU-2024:0860-1
- SUSE Security Ratings
- SUSE Bug 1218865
- SUSE CVE CVE-2023-5981 page
- SUSE CVE CVE-2024-0553 page
Описание
A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding.
Затронутые продукты
Container suse/sle15:15.2:libgnutls30-3.6.7-150200.14.31.1
Container suse/sle15:15.2:libgnutls30-hmac-3.6.7-150200.14.31.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:libgnutls30-3.6.7-150200.14.31.1
Ссылки
- CVE-2023-5981
- SUSE Bug 1217277
- SUSE Bug 1218865
Описание
A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981.
Затронутые продукты
Container suse/sle15:15.2:libgnutls30-3.6.7-150200.14.31.1
Container suse/sle15:15.2:libgnutls30-hmac-3.6.7-150200.14.31.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libgnutls30-3.6.7-150200.14.31.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production:libgnutls30-3.6.7-150200.14.31.1
Ссылки
- CVE-2024-0553
- SUSE Bug 1218865