Updated gnutls packages fix a security vulnerability
Publication date: 14 Jan 2024Modification date: 14 Jan 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-5981
Description
The updated packages fix a security vulnerability: A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct PKCS#1 v1.5 padding. (CVE-2023-5981)
References
SRPMS
9/core
- gnutls-3.8.0-2.1.mga9