What is the severity of RHSA-2024:0319?

The severity of RHSA-2024:0319 is categorized as moderate.

How do I fix RHSA-2024:0319?

To fix RHSA-2024:0319, update the gnutls packages to version 3.6.16-5.el8_6.2.

Which Red Hat products are affected by RHSA-2024:0319?

RHSA-2024:0319 affects multiple Red Hat products including Red Hat Enterprise Linux for ARM 64, x86_64, Power, and IBM z Systems.

What kind of vulnerability does RHSA-2024:0319 address?

RHSA-2024:0319 addresses a timing side-channel vulnerability in the RSA-PSK authentication within the gnutls library.

Is there a specific version of gnutls I should be using after the update for RHSA-2024:0319?

Yes, after the update for RHSA-2024:0319, you should be using gnutls version 3.6.16-5.el8_6.2.

Vulnerability/
RHSA-2024:0319

medium

22/1/2024

7/2/2024

RHSA-2024:0319: Moderate: gnutls security update

First published: Mon Jan 22 2024(Updated: )

Moderate: gnutls security update

Affected Software	Affected Version	How to fix
redhat/gnutls	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-dane	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-dane	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-dane-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-dane-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-debugsource	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-debugsource	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-devel	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-devel	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-utils	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-utils-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-utils-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-utils	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-dane	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-dane-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-debugsource	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-devel	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-utils	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls-utils-debuginfo	<3.6.16-5.el8_6.2	3.6.16-5.el8_6.2
redhat/gnutls	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-dane	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-dane-debuginfo	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-debuginfo	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-debugsource	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-devel	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-utils	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
redhat/gnutls-utils-debuginfo	<3.6.16-5.el8_6.2.aa	3.6.16-5.el8_6.2.aa
Red Hat Enterprise Linux for ARM64 EUS
Red Hat Enterprise Linux for x86_64 - Extended Update Support
Red Hat Enterprise Linux for Power, little endian - Extended Update Support
Red Hat Enterprise Linux for IBM z Systems
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions
Red Hat Enterprise Linux Server
Red Hat Enterprise Linux for SAP Solutions
Red Hat Enterprise Linux Server

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2024:0319?
The severity of RHSA-2024:0319 is categorized as moderate.
How do I fix RHSA-2024:0319?
To fix RHSA-2024:0319, update the gnutls packages to version 3.6.16-5.el8_6.2.
Which Red Hat products are affected by RHSA-2024:0319?
RHSA-2024:0319 affects multiple Red Hat products including Red Hat Enterprise Linux for ARM 64, x86_64, Power, and IBM z Systems.
What kind of vulnerability does RHSA-2024:0319 address?
RHSA-2024:0319 addresses a timing side-channel vulnerability in the RSA-PSK authentication within the gnutls library.
Is there a specific version of gnutls I should be using after the update for RHSA-2024:0319?
Yes, after the update for RHSA-2024:0319, you should be using gnutls version 3.6.16-5.el8_6.2.

agent/severity
agent/type
agent/last-modified-date
agent/title
agent/references
agent/first-publish-date
agent/description
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2024:0319
agent/software-canonical-lookup
agent/remedy
agent/source
agent/event
agent/softwarecombine
agent/tags
collector/redhat-errata-latest
agent/software-canonical-lookup-request
package-manager/redhat
vendor/red hat
canonical/red hat enterprise linux for arm64 eus
canonical/red hat enterprise linux for x86_64 - extended update support
canonical/red hat enterprise linux for power, little endian - extended update support
canonical/red hat enterprise linux for ibm z systems
canonical/red hat enterprise linux server for power le - update services for sap solutions
canonical/red hat enterprise linux server
canonical/red hat enterprise linux for sap solutions