ALSA-2026:3477

[ALSA-2026:3477] Moderate: gnutls security update

Type:

security

Severity:

moderate

Release date:

2026-03-02

Description:

The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.  

Security Fix(es):  

  * gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function (CVE-2025-9820)
  * gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification (CVE-2025-14831)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	gnutls-3.8.10-3.el10_1.aarch64.rpm	06aeb11f78145263383d88d7a55ddd0babf25b86c3e0ac9c0db275935464d880
aarch64	gnutls-fips-3.8.10-3.el10_1.aarch64.rpm	224777f3d14f945f70660cd52364dc95752af07bb7159fb6cbc5fa5f3378f45d
aarch64	gnutls-c++-3.8.10-3.el10_1.aarch64.rpm	61a69d116a9bf98fa6b7fe46114c8cdf500a5a2524f6e484a7ed8b505e2df27e
aarch64	gnutls-utils-3.8.10-3.el10_1.aarch64.rpm	a5ac088681debae2f5c600408a2bf5b3945cc958f8f30785ffa6cbc842abd8a6
aarch64	gnutls-dane-3.8.10-3.el10_1.aarch64.rpm	b44ba6c4278123b1766b95c2ac983d975f016a74df0a395400cd3adfb00b64c5
aarch64	gnutls-devel-3.8.10-3.el10_1.aarch64.rpm	d47f4912d5e2aad4dd58258cd54310e4f6b46f24afa514620a2b89476b6a15d9
ppc64le	gnutls-c++-3.8.10-3.el10_1.ppc64le.rpm	1c3049caaf0a68608eff5ddfd199d7fc78490acb9bcb6a480df784de3e106954
ppc64le	gnutls-3.8.10-3.el10_1.ppc64le.rpm	50148a161bcee42a6fe906ebf395fc4e2114b13ff77fa21b5b85e70704c0be0a
ppc64le	gnutls-fips-3.8.10-3.el10_1.ppc64le.rpm	5ba050c9e5e1084ccd36d5ffac4fc370cd3e031546a5122a06306e798eaf1a47
ppc64le	gnutls-devel-3.8.10-3.el10_1.ppc64le.rpm	6d66e64632324d02be335d542ef3815b7d8c85ff24375cc3e42bc2f55db578ee
ppc64le	gnutls-dane-3.8.10-3.el10_1.ppc64le.rpm	754ee46b42d36cd901b4133d00cc9cef8de5b5741616c0175d4dd95dbc480e74
ppc64le	gnutls-utils-3.8.10-3.el10_1.ppc64le.rpm	aa48f0f581eb1b27fbe9e0b573750a449e7ada36821918f51cbdd69703cc59f4
s390x	gnutls-fips-3.8.10-3.el10_1.s390x.rpm	05b01fedecfd2cd4cfeb5d2bdbdd4c1922f283ac2e2b1dfce99f62ec69e943d2
s390x	gnutls-3.8.10-3.el10_1.s390x.rpm	6f0ecb30b987a13e1d88c231e970ebedec10eca8a8ad2ad11223aa3a1726eb2e
s390x	gnutls-devel-3.8.10-3.el10_1.s390x.rpm	7525f655a7cdff25bf9c134c81e0f699d3290897a029c51cf826b73cf92ac85a
s390x	gnutls-c++-3.8.10-3.el10_1.s390x.rpm	982d6324840e10d4c2ea98760fbe106116c86f9694986f09a88d32f9ebafc0f3
s390x	gnutls-dane-3.8.10-3.el10_1.s390x.rpm	bbda706f9c06121dca2355b3e40ab2135e71c0a23eb65936dcdc634469e9447f
s390x	gnutls-utils-3.8.10-3.el10_1.s390x.rpm	d28ab66888b4ff9daaa02944e40aa9cf7e2b4294cc2b9fabbce8d82bfcb6a018
x86_64	gnutls-c++-3.8.10-3.el10_1.x86_64.rpm	06289d867bf9fe54309d437e1a28cbb6bc6fb71650cadbd0a8d94dff9c3cb21c
x86_64	gnutls-fips-3.8.10-3.el10_1.x86_64.rpm	13dd1e069f7ef319dd9a582b21f2e2cc028f0e8d6a2f19637a3a375d54f2bde6
x86_64	gnutls-dane-3.8.10-3.el10_1.x86_64.rpm	39f92cde86ab4e39ee7b8df688ae14e7dd58708e61f8f7785f02a3d49928c4f1
x86_64	gnutls-3.8.10-3.el10_1.x86_64.rpm	40b4caa57d771d379a8a82ab713b4b32f942ec936bc1bfd6bed039c28daf206f
x86_64	gnutls-devel-3.8.10-3.el10_1.x86_64.rpm	769a9dfffaebf7f3bb1dbc42f928a2729caca60bdff931826af1538beeb23d8c
x86_64	gnutls-utils-3.8.10-3.el10_1.x86_64.rpm	ebfe62465af510b821f0bb5a3f77c547b8cbe59015367a21aeede6e446b61002
x86_64_v2	gnutls-3.8.10-3.el10_1.x86_64_v2.rpm	238c71eb5e915f3d8d20fde8c63bcc196e4c239eed16740da0b7428ce7ea0a8a
x86_64_v2	gnutls-utils-3.8.10-3.el10_1.x86_64_v2.rpm	45c517ef6ff7377c07bf1c15d75457dc4129af3f8a6bbdf56628d19fb4febf9c
x86_64_v2	gnutls-dane-3.8.10-3.el10_1.x86_64_v2.rpm	5c8c9238472eb751fbed5415a1168dc76da68fb14223378ef23e5d391bdcc806
x86_64_v2	gnutls-fips-3.8.10-3.el10_1.x86_64_v2.rpm	8da465e15163f1e278d5c21d20866dd212ee860e7d7d5fe8eddd96e57298471c
x86_64_v2	gnutls-c++-3.8.10-3.el10_1.x86_64_v2.rpm	ab9db075faaeae526aaa884a4e12df5272640dc48b65a12f4a4c86431cd85ed3
x86_64_v2	gnutls-devel-3.8.10-3.el10_1.x86_64_v2.rpm	f5b6b7bb801c863fd6de80aaac0600639f6fd99a663edfeb839ece6d85296261

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.