Mageia Advisory: MGASA-2025-0225 - Updated gnutls packages fix vulnerabilities

Updated gnutls packages fix vulnerabilities

Publication date: 02 Sep 2025
Modification date: 02 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-6395 , CVE-2025-32988 , CVE-2025-32989 , CVE-2025-32990

Description

null pointer dereference in _gnutls_figure_common_ciphersuite().
(CVE-2025-6395)
Vulnerability in gnutls othername san export. (CVE-2025-32988)
Vulnerability in gnutls sct extension parsing. (CVE-2025-32989)
Vulnerability in gnutls certtool template parsing. (CVE-2025-32990)

References

https://bugs.mageia.org/show_bug.cgi?id=34484
https://www.openwall.com/lists/oss-security/2025/07/11/3
https://www.cve.org/CVERecord?id=CVE-2025-6395
https://www.cve.org/CVERecord?id=CVE-2025-32988
https://www.cve.org/CVERecord?id=CVE-2025-32989
https://www.cve.org/CVERecord?id=CVE-2025-32990

SRPMS

9/core

gnutls-3.8.4-1.2.mga9

Advisories » MGASA-2025-0225

Updated gnutls packages fix vulnerabilities

Description

References

SRPMS

9/core