ALSA-2026:5585

[ALSA-2026:5585] Moderate: gnutls security update

Type:

security

Severity:

moderate

Release date:

2026-03-26

Description:

The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.  

Security Fix(es):  

  * gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function (CVE-2025-9820)
  * gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification (CVE-2025-14831)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	gnutls-3.6.16-8.el8_10.5.aarch64.rpm	6461ef905a3074fe8e3aabdf2fa84d3f50329658325d4af6aa3f75d651cb28c6
aarch64	gnutls-dane-3.6.16-8.el8_10.5.aarch64.rpm	71f460b0f24a0c9ccf8f59c1b184739b39c840db360988503456481108fb75eb
aarch64	gnutls-utils-3.6.16-8.el8_10.5.aarch64.rpm	74041f6356ad544c30a318a7f93a3e3ad52f0fd78516468ce1d3ed6c18cc38bd
aarch64	gnutls-devel-3.6.16-8.el8_10.5.aarch64.rpm	e3db8ec959f9580060329ca6b9f81e245c99dbed470d3ae6e0a51c6d33e624f3
aarch64	gnutls-c++-3.6.16-8.el8_10.5.aarch64.rpm	ed49b34f6007cf41ef60defe08040c7e4b74944d5f56006597691be64a29f145
i686	gnutls-dane-3.6.16-8.el8_10.5.i686.rpm	4bad2f840b649dfcd4275c2a1a1987996a0b8c5c3cdd1e0e981aa89b798d4f45
i686	gnutls-3.6.16-8.el8_10.5.i686.rpm	97b354a8dc81091a687a3b8409d6420e24d2497599d8f809dbccb213697d86d7
i686	gnutls-c++-3.6.16-8.el8_10.5.i686.rpm	d66a175e6e52289ec16e08b1f23dda3f63f1c66ccfd4d5be414de570d978f034
i686	gnutls-devel-3.6.16-8.el8_10.5.i686.rpm	d9af577160c4401c0798f272f041aff91139b16945f463c5475af6002dabc01b
ppc64le	gnutls-c++-3.6.16-8.el8_10.5.ppc64le.rpm	03779bb6c1816861276149e0cb703afc12ab4dffdad4f3f50186b620eeaa2e16
ppc64le	gnutls-3.6.16-8.el8_10.5.ppc64le.rpm	22dff60c7c1a872cd9feed344894350e3e139f0ffbb6d7398a4d56133e81c2e9
ppc64le	gnutls-devel-3.6.16-8.el8_10.5.ppc64le.rpm	422a8d9566dec241b799fc451a25cfe5ffb44d6dcd2fe2b1c86292b091a796e9
ppc64le	gnutls-dane-3.6.16-8.el8_10.5.ppc64le.rpm	75e6270fbf94121914c4d52a0b414904c220c8028c92252e1dc8c407cfabc765
ppc64le	gnutls-utils-3.6.16-8.el8_10.5.ppc64le.rpm	c6a5b9cbbb8b7db95d948b8c1bcedd097134825e537f3863d13a1db872a92884
s390x	gnutls-c++-3.6.16-8.el8_10.5.s390x.rpm	2baf69e6f626d93e7e4c1f3026896171f53a0ee7ffe81ef01b9d8435b56959ab
s390x	gnutls-dane-3.6.16-8.el8_10.5.s390x.rpm	4404217526ee031ce778944d403bedff3f9beedaa632c8d7203afd8d8a0598e8
s390x	gnutls-devel-3.6.16-8.el8_10.5.s390x.rpm	6777a73d1ff42c2f25eafb46bd6560acf69aa5193b328dbc7dcf5f5f8dc9a777
s390x	gnutls-utils-3.6.16-8.el8_10.5.s390x.rpm	78bbc2a42b1a87da893ea5df5ce4f0125a716799d0f7f81c9c6b823033052360
s390x	gnutls-3.6.16-8.el8_10.5.s390x.rpm	d12ce49d66297526fe2876777322b69c5a8a2efca4dce6bdaae15e79f3fed427
x86_64	gnutls-utils-3.6.16-8.el8_10.5.x86_64.rpm	22a88503b0ed37db0bca28dca4d32ac743993f01b068c7d3959ff11fbce806a0
x86_64	gnutls-3.6.16-8.el8_10.5.x86_64.rpm	8d645481b1de4eaaea8289996b5d9331a3560a127f53d3ca646cc03677ab9bc3
x86_64	gnutls-c++-3.6.16-8.el8_10.5.x86_64.rpm	90f27696686a782cdddab68a26935da5a514337c007efdea0f258c01a6de808f
x86_64	gnutls-devel-3.6.16-8.el8_10.5.x86_64.rpm	c95bee4aea827451d2f8d05516b98b226591a0e7166e01eabc7f9b6f0d592e1d
x86_64	gnutls-dane-3.6.16-8.el8_10.5.x86_64.rpm	ff92edf2b50916d7202a58c07350da01df27325bf43e3c41f632ab357443daaa

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.