SUSE-SU-2025:00764-1

Details

This update for gnutls fixes the following issues:

CVE-2024-12243: quadratic complexity of DER input decoding in libtasn1 can lead to a DoS (bsc#1236974).

Affected Packages

gnutls

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

libgnutls-devel

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

libgnutls-devel-32bit

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

libgnutls30

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

libgnutls30-32bit

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

libgnutlsxx-devel

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

libgnutlsxx30

SUSE Linux Enterprise Module for Certifications 15 SP7

Fixed in:

3.8.3-150600.4.6.2

References