First published: Tue Nov 21 2023(Updated: )
It was discovered that GnuTLS had a timing side-channel when handling certain RSA-PSK key exchanges. A remote attacker could possibly use this issue to recover sensitive information.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libgnutls30 | <3.8.1-4ubuntu1.1 | 3.8.1-4ubuntu1.1 |
Ubuntu Ubuntu | =23.10 | |
All of | ||
ubuntu/libgnutls30 | <3.7.8-5ubuntu1.1 | 3.7.8-5ubuntu1.1 |
Ubuntu Ubuntu | =23.04 | |
All of | ||
ubuntu/libgnutls30 | <3.7.3-4ubuntu1.3 | 3.7.3-4ubuntu1.3 |
Ubuntu Ubuntu | =22.04 | |
All of | ||
ubuntu/libgnutls30 | <3.6.13-2ubuntu1.9 | 3.6.13-2ubuntu1.9 |
Ubuntu Ubuntu | =20.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.