ALSA-2026:4188

[ALSA-2026:4188] Moderate: gnutls security update

Type:

security

Severity:

moderate

Release date:

2026-03-13

Description:

The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.  

Security Fix(es):  

  * gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function (CVE-2025-9820)
  * gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification (CVE-2025-14831)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	gnutls-3.8.3-10.el9_7.aarch64.rpm	7b27a6cb67587a489ce7d7b886ecdc1973c5e0acde40ecd465cb1ed983d142e0
aarch64	gnutls-c++-3.8.3-10.el9_7.aarch64.rpm	811e7e11b7611c455403822850e981c66b81284d8fb750fff58e0f3247a35704
aarch64	gnutls-dane-3.8.3-10.el9_7.aarch64.rpm	8e9a75b8f077e97c580788134e2d0496d6e2c7a41ae248ef3e4d0a96815cad35
aarch64	gnutls-devel-3.8.3-10.el9_7.aarch64.rpm	981a8237e9eeb87756c932c1db692cb967602bb55e01495989c65a473035a865
aarch64	gnutls-utils-3.8.3-10.el9_7.aarch64.rpm	dcb3394318c7cf8223f2d9704139c8cdfa7d090d807d796f1a11f476e0469935
i686	gnutls-3.8.3-10.el9_7.i686.rpm	2753534be5c8510ec8a87328d8996bcab1f6a410d693837f801c2f30b42fc7f8
i686	gnutls-c++-3.8.3-10.el9_7.i686.rpm	5f0c246a418f76b887c125926f0d1bfed3f595e6b3f397e3cde362e0362ab0aa
i686	gnutls-devel-3.8.3-10.el9_7.i686.rpm	638d485e1992864ce07e358506514910eb07dbbc64fe6ab47ca61489f5dfc672
i686	gnutls-dane-3.8.3-10.el9_7.i686.rpm	656e78c63a0e0f31a2af8597caa4edda4633cfff879efe06f21cdf6f1802f1cb
ppc64le	gnutls-utils-3.8.3-10.el9_7.ppc64le.rpm	2607b368411addce8c5f38e35642bcb009c4d3293e1a10c5b4d622f08032a818
ppc64le	gnutls-devel-3.8.3-10.el9_7.ppc64le.rpm	2dda045e65d2f35c2684087b6aae946aebec065e2670ad90c7c7f5599987eee5
ppc64le	gnutls-c++-3.8.3-10.el9_7.ppc64le.rpm	4f50905aedc6e1caa88c6747975e2428b80c0a3a9d25e97c28b106ca468e462a
ppc64le	gnutls-3.8.3-10.el9_7.ppc64le.rpm	b149f2ea0056387ef136ab20cdeb63aaa516bf5c159b2f74a322baf36f6717f8
ppc64le	gnutls-dane-3.8.3-10.el9_7.ppc64le.rpm	e959a5c7c593995bbb92ce9794e5c16094e57e26ea737e72d83aa604dccfbf6b
s390x	gnutls-devel-3.8.3-10.el9_7.s390x.rpm	03abad1802173ca4f35f0cf93e41783ddc000340aedbae1269442ce7b6691ced
s390x	gnutls-dane-3.8.3-10.el9_7.s390x.rpm	06814310c8fcf7ccfdd238446179c150e3cb54269ad81f1fd3d1e12aff9f2952
s390x	gnutls-utils-3.8.3-10.el9_7.s390x.rpm	661e2db8496cec56ef24a70abfee06b4037b8437d6cc3324888cafae0a496d47
s390x	gnutls-c++-3.8.3-10.el9_7.s390x.rpm	720911b427d9e7d0baee61ccab1214352afc9f471e43a38fec2bf61c4f2ba82b
s390x	gnutls-3.8.3-10.el9_7.s390x.rpm	876477525993e960fa9ed4583a4651d05a2822798c91ae988c230b2d98fd472f
x86_64	gnutls-c++-3.8.3-10.el9_7.x86_64.rpm	28246d466b350d88796f72741710f1f87edcf87c6e1eaeb98184dce9714c3650
x86_64	gnutls-utils-3.8.3-10.el9_7.x86_64.rpm	471c7ba3535e9c8e1f9cddee26a6d25dd75990793a7be9147ec235ce13e6051d
x86_64	gnutls-3.8.3-10.el9_7.x86_64.rpm	6b2d5262c9d2ecb780ac4f674d207552d0ec72c4665d529698cf91de2953ba03
x86_64	gnutls-dane-3.8.3-10.el9_7.x86_64.rpm	84d6081f70259f2ab2e257c517669c9ead62ae9975d10936d8d9e7b9935643fb
x86_64	gnutls-devel-3.8.3-10.el9_7.x86_64.rpm	c2988f1aabc7e22c763643339bd1e6e4c18bf6f5fdc0dcb9fdd1c62d113facca

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.