SUSE-SU-2024:0638-1 -- SLES gnutls, libgnutlsxx-devel, libgnutls30, libgnutls-devel, libgnutlsxx28| ID: oval:org.secpod.oval:def:89051552 | Date: (C)2024-04-26 (M)2024-04-26 |
| Class: PATCH | Family: unix |
This update for gnutls fixes the following issues: * CVE-2024-0567: Fixed an incorrect rejection of certificate chains with distributed trust . * CVE-2024-0553: Fixed a timing attack against the RSA-PSK key exchange, which could lead to the leakage of sensitive data .
| Platform: |
| SUSE Linux Enterprise Desktop 15 SP5 |
| SUSE Linux Enterprise Server 15 SP5 |
| Product: |
| gnutls |
| libgnutlsxx-devel |
| libgnutls30 |
| libgnutls-devel |
| libgnutlsxx28 |
