CLSA-2025-1749479602
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1749479602.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2025-1749479602
- Upstream
- Published
- 2025-06-09T14:33:27Z
- Modified
- 2026-06-01T00:33:27.475456070Z
- Summary
- gnutls: Fix of 3 CVEs
- Details
-
- Keep the broken pkcs11 tests disabled.
- Added CVE-2024-0567 PoC test.
- CVE-2023-5981-pre1: improve level of randomness for each operations, always use gnutlsswitchlibstate for pk wrappers.
- CVE-2023-5981-pre2: add constant time/cache operations to prevent or minimaze timining or cache side channel attacks.
- CVE-2023-5981: removes branching that depends on secret data to prevent potential side-channel attack.
- CVE-2024-0553: minimize branching after decryption.
- References
Affected packages
TuxCare:RHEL:7 / gnutls
Package
- Name
- gnutls
- Purl
- pkg:rpm/tuxcare/gnutls?distro=rhel-7
TuxCare:RHEL:7 / gnutls-c++
Package
- Name
- gnutls-c++
- Purl
- pkg:rpm/tuxcare/gnutls-c++?distro=rhel-7
TuxCare:RHEL:7 / gnutls-dane
Package
- Name
- gnutls-dane
- Purl
- pkg:rpm/tuxcare/gnutls-dane?distro=rhel-7
TuxCare:RHEL:7 / gnutls-devel
Package
- Name
- gnutls-devel
- Purl
- pkg:rpm/tuxcare/gnutls-devel?distro=rhel-7