CLSA-2024-1708029216
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2024-1708029216.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2024-1708029216
- Upstream
- Published
- 2024-02-15T20:33:39Z
- Modified
- 2026-06-01T00:33:12.084883726Z
- Summary
- gnutls: Fix of 3 CVEs
- Details
-
- Add CVE-2024-0567 PoC test
- Remove src.rpm from sources
- CVE-2023-5981: removes branching that depends on secret data to prevent potential side-channel attack
- CVE-2024-0553: minimize branching after decryption
- References
Affected packages
TuxCare:CentOS:8.4 / gnutls
Package
- Name
- gnutls
- Purl
- pkg:rpm/tuxcare/gnutls?distro=centos-8.4
TuxCare:CentOS:8.4 / gnutls-c++
Package
- Name
- gnutls-c++
- Purl
- pkg:rpm/tuxcare/gnutls-c++?distro=centos-8.4
TuxCare:CentOS:8.4 / gnutls-dane
Package
- Name
- gnutls-dane
- Purl
- pkg:rpm/tuxcare/gnutls-dane?distro=centos-8.4
TuxCare:CentOS:8.4 / gnutls-devel
Package
- Name
- gnutls-devel
- Purl
- pkg:rpm/tuxcare/gnutls-devel?distro=centos-8.4