Fedora 40 Critical: FEDORA-2025-5e5783f0d1 GnuTLS Remote DoS
fedora
February 26, 2025
Update gnutls to the latest upstream release, including a fix for CVE-2024-12243.
Summary
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
Update Information:
Update gnutls to the latest upstream release, including a fix for CVE-2024-12243.
Topics Covered
Change Log
* Tue Feb 18 2025 Daiki Ueno
References
[ 1 ] Bug #2344616 - CVE-2024-12243 gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS [fedora-40]
https://bugzilla.redhat.com/show_bug.cgi?id=2344616
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-5e5783f0d1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: gnutls
Product: Fedora 40
Version: 3.8.9
Release: 1.fc40
Summary: A TLS protocol implementation
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!