Advisories ยป MGASA-2021-0291

Updated gnutls packages fix security vulnerabilities

Publication date: 28 Jun 2021
Type: security
Affected Mageia releases : 7 , 8
CVE: CVE-2021-20231 , CVE-2021-20233

Description

A flaw was found in gnutls. A use after free issue in client sending
key_share extension may lead to memory corruption and other consequences
(CVE-2021-20231).

A flaw was found in gnutls. A use after free issue in client_send_params in
lib/ext/pre_shared_key.c may lead to memory corruption and other potential
consequences (CVE-2021-20232).
                

References

SRPMS

7/core

8/core