It was discovered that GnuTLS had a timing side-channel when performing certain ECDSA operations. A remote attacker could possibly use this issue to recover sensitive information. (CVE-2024-28834)
It was discovered that GnuTLS incorrectly handled verifying certain PEM bundles. A remote attacker could possibly use this issue to cause GnuTLS to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 23.10. (CVE-2024-28835)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "gnutls-bin" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "gnutls-bin-dbgsym" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "gnutls-doc" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "guile-gnutls" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "guile-gnutls-dbgsym" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls-dane0" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls-dane0-dbgsym" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls-openssl27" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls-openssl27-dbgsym" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls28-dev" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls30" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutls30-dbgsym" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutlsxx28" }, { "binary_version": "3.6.13-2ubuntu1.11", "binary_name": "libgnutlsxx28-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "gnutls-bin" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "gnutls-bin-dbgsym" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "gnutls-doc" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "guile-gnutls" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "guile-gnutls-dbgsym" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls-dane0" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls-dane0-dbgsym" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls-openssl27" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls-openssl27-dbgsym" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls28-dev" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls30" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutls30-dbgsym" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutlsxx28" }, { "binary_version": "3.7.3-4ubuntu1.5", "binary_name": "libgnutlsxx28-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "gnutls-bin" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "gnutls-bin-dbgsym" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "gnutls-doc" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls-dane0" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls-dane0-dbgsym" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls-openssl27" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls-openssl27-dbgsym" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls28-dev" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls30" }, { "binary_version": "3.8.1-4ubuntu1.3", "binary_name": "libgnutls30-dbgsym" } ] }