Updated gnutls packages fix vulnerabilities
Publication date: 02 Sep 2025Modification date: 02 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-6395 , CVE-2025-32988 , CVE-2025-32989 , CVE-2025-32990
Description
null pointer dereference in _gnutls_figure_common_ciphersuite().
(CVE-2025-6395)
Vulnerability in gnutls othername san export. (CVE-2025-32988)
Vulnerability in gnutls sct extension parsing. (CVE-2025-32989)
Vulnerability in gnutls certtool template parsing. (CVE-2025-32990)
References
- https://bugs.mageia.org/show_bug.cgi?id=34484
- https://www.openwall.com/lists/oss-security/2025/07/11/3
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6395
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32988
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32989
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32990
SRPMS
9/core
- gnutls-3.8.4-1.2.mga9