Alerts This Week
Warning Icon 1 1,220
Alerts This Week
Warning Icon 1 1,220

Slackware 15.0: 2025-039-01 critical update for gnutls DoS vulnerability

slackware
Calendar Grey February 8, 2025
Dist Slackware Esm H88
Latest gnutls updates address a Denial of Service flaw in Slackware 15.0 - critical security patch now accessible
New gnutls packages are available for Slackware 15.0 and -current to fix a security issue

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/gnutls-3.8.9-i586-1_slack15.0.txz: Upgraded. libgnutls: Fix potential DoS in handling certificates with numerous name constraints, as a follow-up of CVE-2024-12133 in libtasn1. The bundled copy of libtasn1 has also been updated to the latest 4.20.0 release to complete the fix. Reported by Bing Shi. For more information, see: https://www.cve.org/CVERecord?id=CVE-2024-12243 (* Security fix *)

Topics%20covered

Topics Covered

security advisory DoS attack package update Slackware gnutls attack surface

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/gnutls-3.8.9-i586-1_slack15.0.txz
Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/gnutls-3.8.9-x86_64-1_slack15.0.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/gnutls-3.8.9-i686-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/gnutls-3.8.9-x86_64-1.txz

MD5 Signatures

Slackware 15.0 package: 8bb547f4411f41ed0c22cfb75d41e217 gnutls-3.8.9-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: d3c00000cc99c4b853bb4ac8a656c777 gnutls-3.8.9-x86_64-1_slack15.0.txz
Slackware -current package: 28561b5695682f22f68ef0ec30f5ad06 n/gnutls-3.8.9-i686-1.txz
Slackware x86_64 -current package: dfee94759ad28a22098af4d94a0a944e n/gnutls-3.8.9-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory DoS attack package update Slackware gnutls attack surface

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg gnutls-3.8.9-i586-1_slack15.0.txz

Your message here