Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Slackware 15.0: 2024-020-03 update: openssl vulnerability patch

slackware
Calendar Grey January 16, 2024
Dist Slackware Esm H88
Gnutls packages for Slackware 15.0 resolve security issues related to timing attacks and certificate verification.
New gnutls packages are available for Slackware 15.0 and -current to fix security issues

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gnutls-3.8.3-i586-1_slack15.0.txz: Upgraded. This update fixes two medium severity security issues: Fix more timing side-channel inside RSA-PSK key exchange. Fix assertion failure when verifying a certificate chain with a cycle of cross signatures. For more information, see: https://www.cve.org/CVERecord?id=CVE-2024-0553 https://www.cve.org/CVERecord?id=CVE-2024-0567 (* Security fix *)

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 15.0:
Updated package for Slackware x86_64 15.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 15.0 package: 883c919c39e4003d280aa7a7ce96fa6c gnutls-3.8.3-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: f87ab044e8b0e5e3badb1e93947abc80 gnutls-3.8.3-x86_64-1_slack15.0.txz
Slackware -current package: 09f41babc753a0b69ec3ae25804111ed n/gnutls-3.8.3-i586-1.txz
Slackware x86_64 -current package: 370bcaa3e93e54fe6cf135161261e5a4 n/gnutls-3.8.3-x86_64-1.txz

Severity
medium
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg gnutls-3.8.3-i586-1_slack15.0.txz

Your message here