[SECURITY] [DLA 3321-1] gnutls28 security update

To: debian-lts-announce <[email protected]>
Subject: [SECURITY] [DLA 3321-1] gnutls28 security update
From: Markus Koschany <[email protected]>
Date: Sat, 18 Feb 2023 17:19:13 +0100
Message-id: <[🔎] [email protected]>
Mail-followup-to: [email protected]
Reply-to: [email protected]

-------------------------------------------------------------------------
Debian LTS Advisory DLA-3321-1                [email protected]
https://www.debian.org/lts/security/                      Markus Koschany
February 18, 2023                             https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package        : gnutls28
Version        : 3.6.7-4+deb10u10
CVE ID         : CVE-2023-0361

Hubert Kario discovered a timing side channel in the RSA decryption
implementation of the GNU TLS library.

For Debian 10 buster, this problem has been fixed in version
3.6.7-4+deb10u10.

We recommend that you upgrade your gnutls28 packages.

For the detailed security status of gnutls28 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gnutls28

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Prev by Date: [SECURITY] [DLA 3320-1] webkit2gtk security update
Next by Date: [SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update
Previous by thread: [SECURITY] [DLA 3320-1] webkit2gtk security update
Next by thread: [SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update
Index(es):
- Date
- Thread

	
		OSZAR »