-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-a62f1e771c 2025-02-20 02:26:22.548373+00:00 -------------------------------------------------------------------------------- Name : gnutls Product : Fedora 41 Version : 3.8.9 Release : 2.fc41 URL : http://www.gnutls.org/ Summary : A TLS protocol implementation Description : GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures. -------------------------------------------------------------------------------- Update Information: Update gnutls to the latest upstream release, including a fix for CVE-2024-12243. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 18 2025 Daiki Ueno <dueno@xxxxxxxxxx> - 3.8.9-2 - Switch from liboqs to leancrypto * Tue Feb 18 2025 Daiki Ueno <dueno@xxxxxxxxxx> - 3.8.9-1 - Update to gnutls 3.8.9 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #2344617 - CVE-2024-12243 gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2344617 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a62f1e771c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
