Lucene search
AlmaLinuxALSA-2021:1206HistoryApr 14, 2021 - 8:07 p.m.
Important: gnutls and nettle security update
2021-04-1420:07:45
errata.almalinux.org
30
gnutls
ssl
tls
nettle
cryptographic library
memory access
security update
EPSS
0.01
Percentile
83.4%
The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.
Nettle is a cryptographic library that is designed to fit easily in almost any context: In crypto toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like LSH or GNUPG, or even in kernel space.
Security Fix(es):
- nettle: Out of bounds memory access in signature verification (CVE-2021-20305)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | i686 | gnutls | < 3.6.14-8.el8_3 | gnutls-3.6.14-8.el8_3.i686.rpm |
| almalinux | 8 | x86_64 | gnutls | < 3.6.14-8.el8_3 | gnutls-3.6.14-8.el8_3.x86_64.rpm |
| almalinux | 8 | i686 | gnutls-c++ | < 3.6.14-8.el8_3 | gnutls-c++-3.6.14-8.el8_3.i686.rpm |
| almalinux | 8 | x86_64 | gnutls-c++ | < 3.6.14-8.el8_3 | gnutls-c++-3.6.14-8.el8_3.x86_64.rpm |
| almalinux | 8 | i686 | gnutls-dane | < 3.6.14-8.el8_3 | gnutls-dane-3.6.14-8.el8_3.i686.rpm |
| almalinux | 8 | x86_64 | gnutls-dane | < 3.6.14-8.el8_3 | gnutls-dane-3.6.14-8.el8_3.x86_64.rpm |
| almalinux | 8 | i686 | gnutls-devel | < 3.6.14-8.el8_3 | gnutls-devel-3.6.14-8.el8_3.i686.rpm |
| almalinux | 8 | x86_64 | gnutls-devel | < 3.6.14-8.el8_3 | gnutls-devel-3.6.14-8.el8_3.x86_64.rpm |
| almalinux | 8 | x86_64 | gnutls-utils | < 3.6.14-8.el8_3 | gnutls-utils-3.6.14-8.el8_3.x86_64.rpm |
| almalinux | 8 | i686 | nettle | < 3.4.1-4.el8_3 | nettle-3.4.1-4.el8_3.i686.rpm |
References
Related
redhat
redhat
(RHSA-2021:2356) Important: nettle security update
2021-06-09 08:30:05
(RHSA-2021:1245) Important: gnutls and nettle security update
2021-04-19 11:26:49
(RHSA-2021:1246) Important: gnutls and nettle security update
2021-04-19 11:27:37
nessus
nessus
AlmaLinux 8 : gnutls and nettle (ALSA-2021:1206)
2022-02-09 00:00:00
GLSA-202105-31 : Nettle: Denial of service
2022-01-24 00:00:00
Rocky Linux 8 : gnutls and nettle (RLSA-2021:1206)
2023-11-07 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4906-1)
2021-04-14 00:00:00
CentOS: Security Advisory for nettle (CESA-2021:1145)
2021-04-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1399-1)
2021-06-09 00:00:00
prion
prion
Design/Logic Flaw
2021-04-05 22:15:00
cvelist
cvelist
CVE-2021-20305
2021-04-05 21:31:06
osv
osv
CGA-jrgv-6vmg-8276
2024-06-06 12:26:08
nettle vulnerability
2021-04-13 15:00:11
CVE-2021-20305
2021-04-05 22:15:12
ubuntucve
ubuntucve
CVE-2021-20305
2021-04-05 00:00:00
oraclelinux
oraclelinux
gnutls and nettle security update
2021-04-16 00:00:00
nettle security update
2021-04-09 00:00:00
alpinelinux
alpinelinux
CVE-2021-20305
2021-04-05 22:15:12
fedora
fedora
[SECURITY] Fedora 33 Update: gnutls-3.6.16-1.fc33
2021-06-01 01:06:08
f5
f5
K33101555 : Nettle cryptography library vulnerability CVE-2021-20305
2021-06-08 00:00:00
debiancve
debiancve
CVE-2021-20305
2021-04-05 22:15:12
altlinux
altlinux
Security fix for the ALT Linux 9 package gnutls30 version 3.6.16-alt1
2021-06-09 00:00:00
Security fix for the ALT Linux 10 package gnutls30 version 3.6.16-alt1
2021-05-31 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-20305 affecting package nettle 3.4.1-2
2021-05-06 23:56:43
veracode
veracode
Incorrect Signature Verification
2021-04-17 00:58:26
rocky
rocky
gnutls and nettle security update
2021-04-14 20:07:45
redhatcve
redhatcve
CVE-2021-20305
2021-03-31 17:08:42
amazon
amazon
Important: nettle
2021-04-20 17:55:00
slackware
slackware
[slackware-security] gnutls
2021-05-25 18:17:19
cloudfoundry
cloudfoundry
USN-4906-1: Nettle vulnerability | Cloud Foundry
2021-04-29 00:00:00
cve
cve
CVE-2021-20305
2021-04-05 22:15:12
ubuntu
ubuntu
Nettle vulnerability
2021-04-13 00:00:00
suse
suse
Security update for libnettle (important)
2021-05-01 00:00:00
centos
centos
nettle security update
2021-04-16 20:23:43
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-2.0-0339
2021-04-21 00:00:00
Critical Photon OS Security Update - PHSA-2021-0339
2021-04-21 00:00:00
Critical Photon OS Security Update - PHSA-2021-0223
2021-04-21 00:00:00
gentoo
gentoo
Nettle: Denial of service
2021-05-26 00:00:00
nvd
nvd
CVE-2021-20305
2021-04-05 22:15:12
debian
debian
[SECURITY] [DSA 4933-1] nettle security update
2021-06-18 18:58:09
[SECURITY] [DLA 2760-1] nettle security update
2021-09-18 14:46:40
[SECURITY] [DSA 4933-1] nettle security update
2021-06-18 18:58:09
rosalinux
rosalinux
Advisory ROSA-SA-2021-1930
2021-07-02 17:33:14
mageia
mageia
Updated nettle packages fix security vulnerabilities
2021-06-29 20:31:40
ibm
ibm
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00