stable

gnutls-3.6.14-1.fc31

FEDORA-2020-76b705bb63 created by ueno 5 years ago for Fedora 31

Update to upstream 3.6.14 release, and security fix for CVE-2020-13777.

  • Fix certificate chain validation involving the expired "AddTrust External Root".
  • Disable RSA blinding during FIPS self-tests to avoid hanging if there is not enough entropy for getrandom()
  • Add --waitresumption option to gnutls-cli to force the client to wait for resumption data (new session ticket) under TLS 1.3

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-76b705bb63

This update has been submitted for testing by ueno.

5 years ago

This update's test gating status has been changed to 'waiting'.

5 years ago

This update has obsoleted gnutls-3.6.13-6.fc31, and has inherited its bugs and notes.

5 years ago

This update's test gating status has been changed to 'ignored'.

5 years ago

This update has been pushed to testing.

5 years ago
User Icon pwalter commented & provided feedback 5 years ago
karma

Works

This update's test gating status has been changed to 'greenwave_failed'.

5 years ago

This update's test gating status has been changed to 'ignored'.

5 years ago
User Icon ansasaki commented & provided feedback 5 years ago
karma

Fixes the security issue.

BZ#1843723 CVE-2020-13777 gnutls: session resumption works without master key allowing MITM
BZ#1843724 CVE-2020-13777 gnutls: session resumption works without master key allowing MITM [fedora-all]

This update can be pushed to stable now if the maintainer wishes

5 years ago

This update has been submitted for stable by ueno.

5 years ago

This update has been pushed to stable.

5 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
Builds
1
gnutls-3.6.14-1.fc31
BZ#1843723 CVE-2020-13777 gnutls: session resumption works without master key allowing MITM
0
1
BZ#1843724 CVE-2020-13777 gnutls: session resumption works without master key allowing MITM [fedora-all]
0
1
gnutls-3.6.14-1.fc31

Automated Test Results

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 25.11.3 on bodhi-web-21-zp57g.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy