ALSA-2026:20611

[ALSA-2026:20611] Important: gnutls security update

Type:

security

Severity:

important

Release date:

2026-05-27

Description:

Please update the gnutls packages to provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.  

Security Fix(es):  

  * gnutls: Add more checks to DTLS reassembly (CVE-2026-33846)
  * gnutls: Fix qsort comparator in DTLS reassembly (CVE-2026-42009)
  * gnutls: Fix crashing on an underflow with a DTLS datagram (CVE-2026-33845)
  * gnutls: Fix RSA-PSK identity truncation (CVE-2026-42010)
  * gnutls: Fix case-sensitivity of domain name comparison in name constraints (CVE-2026-3833)
  * gnutls: Fix intersecting empty constraints (CVE-2026-42011)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	gnutls-3.6.16-8.el8_10.6.aarch64.rpm	2c1adaba59a918799928394f7d70efcd00f18cae87ba9fbcd090be08104cae9a
aarch64	gnutls-dane-3.6.16-8.el8_10.6.aarch64.rpm	6d6bc434b697672dcd4e740840938ee19524b584e7032275e16ea8046fb01060
aarch64	gnutls-c++-3.6.16-8.el8_10.6.aarch64.rpm	6df4c507fcfe8f3ea1414409efe86f727c64196e601fe656a77866ecbb71d50d
aarch64	gnutls-utils-3.6.16-8.el8_10.6.aarch64.rpm	8ca1d5adbf402c11607f88b32b7b8b27c9637ee40ddfd19d3f1dbcddac79fb28
aarch64	gnutls-devel-3.6.16-8.el8_10.6.aarch64.rpm	ccab27d96b2ab63a5c3af057a06832b2de1a66016ca9d28d76eee166795636a5
i686	gnutls-devel-3.6.16-8.el8_10.6.i686.rpm	1a0681c6d4f57970978f5bc16b1fbdab086ff84b957a393cabe3498fb7f33e4d
i686	gnutls-c++-3.6.16-8.el8_10.6.i686.rpm	a4abe6b134d4edb56975113c3255be25b9231900847e180862959a94828eb599
i686	gnutls-3.6.16-8.el8_10.6.i686.rpm	b6b6f327d41ea92ff60d6a5ebf48016f2176518f52c71bd301769ca968058de8
i686	gnutls-dane-3.6.16-8.el8_10.6.i686.rpm	eb208a062c26b226f09052ab5c5a60b6cb3a4c9f125878ba0466a897d3ee6b25
ppc64le	gnutls-utils-3.6.16-8.el8_10.6.ppc64le.rpm	1391b9fb1a5a78b1c80e6a675a4b9578f053010ba653173ed32c22fd1189bc0a
ppc64le	gnutls-c++-3.6.16-8.el8_10.6.ppc64le.rpm	38a38d7e8133ee8299c3fe197461d852374c78c990580b558d851c94128ff5e3
ppc64le	gnutls-dane-3.6.16-8.el8_10.6.ppc64le.rpm	52eaf3967a1f36b574af7c6f370e7779142e0620e4ac767387ff7f88b7664e95
ppc64le	gnutls-devel-3.6.16-8.el8_10.6.ppc64le.rpm	901ded7173762388a8948772071e6a1a0273e70211c3b7644e8b05d7b4354f9a
ppc64le	gnutls-3.6.16-8.el8_10.6.ppc64le.rpm	96b2c0d7378bbdb5ff6183eacaec3a9c965c79f0a53060483efa5abf3fa88dab
s390x	gnutls-devel-3.6.16-8.el8_10.6.s390x.rpm	353d4f33116054ff978cad997548bb9c3349ff1f96bd8f8032f22e8e56371331
s390x	gnutls-dane-3.6.16-8.el8_10.6.s390x.rpm	38d7886dc1bbdb8d4a2d03f7f38df42458670166347a5dcd9918f2ac38626719
s390x	gnutls-utils-3.6.16-8.el8_10.6.s390x.rpm	6881c8a9eb3ee86269c7a74bd41fdcbe16cc6995a8c9afef123afbbfc634b2a5
s390x	gnutls-3.6.16-8.el8_10.6.s390x.rpm	dc7661ce8fc99569161712cba1a6669fe74af3a5818c1397353ed7afbcce535a
s390x	gnutls-c++-3.6.16-8.el8_10.6.s390x.rpm	fdd82fa1f0cd7c706820b97c16ed677b64df178dbdd8d9db4f71b0de591ab9d8
x86_64	gnutls-devel-3.6.16-8.el8_10.6.x86_64.rpm	09bf342295fce49c2cd37f322b8e37c3cccc9c3843941c3f77ea787893a16efc
x86_64	gnutls-utils-3.6.16-8.el8_10.6.x86_64.rpm	12e54ca4b774a324a74da86c5a1666d58cc17e1dea40eaf2bb999d1372b27c06
x86_64	gnutls-c++-3.6.16-8.el8_10.6.x86_64.rpm	31d842f267d42c844d26d9c3bb1084596a653d1d11e5665fa1c1280d11913b53
x86_64	gnutls-3.6.16-8.el8_10.6.x86_64.rpm	9a62d8865eac6dfbbcdf5e8c52361fe10e7da56e1374c3779d2e4e62e0dbce62
x86_64	gnutls-dane-3.6.16-8.el8_10.6.x86_64.rpm	e89496ebbf49edf1905e59d2011d59b9e95a078677352fae2660f99a01cb3450

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.