Main Vulnerability Database SB20240412127

SB20240412127 - SUSE update for gnutls

Published: April 12, 2024

Security Bulletin ID SB20240412127

Severity

Medium

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Cryptographic issues (CVE-ID: CVE-2024-28834)

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to a side-channel attack when using the gnutls_privkey_sign_data2 API function with the "GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE" flag. A remote attacker can launch Minerva attack and gain access to sensitive information.

2) Input validation error (CVE-ID: CVE-2024-28835)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when parsing the cert_list_size parameter in the gnutls_x509_trust_list_verify_crt2() function in certtool. A remote attacker can pass specially crafted PEM encoded certificate chain that contains more than 16 certificates to the certtool and crash it.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2024/suse-su-20241271-1/

Vulnerable Software

SUSE Linux Enterprise Micro: 5.4 - 5.5
openSUSE Leap Micro: 5.4
Basesystem Module: 15-SP5
SUSE Linux Enterprise Micro for Rancher: 5.4
SUSE Linux Enterprise Server for SAP Applications 15: SP5
SUSE Linux Enterprise Server 15: SP5
SUSE Linux Enterprise Real Time 15: SP5
SUSE Linux Enterprise High Performance Computing 15: SP5
SUSE Linux Enterprise Desktop 15: SP5
openSUSE Leap: 15.4 - 15.5
libgnutls30-hmac-64bit: before 3.7.3-150400.4.44.1
libgnutls30-64bit: before 3.7.3-150400.4.44.1
libgnutls30-64bit-debuginfo: before 3.7.3-150400.4.44.1
libgnutls-devel-64bit: before 3.7.3-150400.4.44.1
libgnutls30-hmac-32bit: before 3.7.3-150400.4.44.1
libgnutls30-32bit-debuginfo: before 3.7.3-150400.4.44.1
libgnutls-devel-32bit: before 3.7.3-150400.4.44.1
libgnutls30-32bit: before 3.7.3-150400.4.44.1
libgnutlsxx-devel: before 3.7.3-150400.4.44.1
gnutls-guile-debuginfo: before 3.7.3-150400.4.44.1
libgnutlsxx28-debuginfo: before 3.7.3-150400.4.44.1
libgnutls-devel: before 3.7.3-150400.4.44.1
gnutls-guile: before 3.7.3-150400.4.44.1
libgnutlsxx28: before 3.7.3-150400.4.44.1
gnutls-debuginfo: before 3.7.3-150400.4.44.1
libgnutls30: before 3.7.3-150400.4.44.1
gnutls-debugsource: before 3.7.3-150400.4.44.1
libgnutls30-debuginfo: before 3.7.3-150400.4.44.1
libgnutls30-hmac: before 3.7.3-150400.4.44.1
gnutls: before 3.7.3-150400.4.44.1