Publishing details

• Removed from disk on 2024-04-29.
• Removal requested on 2024-04-29.
• Deleted on 2024-04-29 by Marc Deslauriers
• Published on 2024-04-22

Changelog

gnutls28 (3.8.3-1.1ubuntu3.1) noble-security; urgency=medium

  * SECURITY UPDATE: side-channel leak via Minerva attack
    - debian/patches/CVE-2024-28834.patch: avoid normalization of mpz_t in
      deterministic ECDSA in lib/nettle/int/dsa-compute-k.c,
      lib/nettle/int/dsa-compute-k.h, lib/nettle/int/ecdsa-compute-k.c,
      lib/nettle/int/ecdsa-compute-k.h, lib/nettle/pk.c,
      tests/sign-verify-deterministic.c.
    - CVE-2024-28834
  * SECURITY UPDATE: crash via specially-crafted cert bundle
    - debian/patches/CVE-2024-28835.patch: remove length limit of input in
      lib/gnutls_int.h, lib/x509/common.c, lib/x509/verify-high.c,
      tests/test-chains.h.
    - CVE-2024-28835

 -- Marc Deslauriers <email address hidden>  Thu, 18 Apr 2024 09:54:34 -0400

Builds

• amd64
• arm64
• armhf
• i386
• ppc64el
• riscv64
• s390x

Package files

• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_amd64.ddeb (695.4 KiB)
• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_arm64.ddeb (686.0 KiB)
• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_armhf.ddeb (903.3 KiB)
• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_i386.ddeb (870.8 KiB)
• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_ppc64el.ddeb (646.2 KiB)
• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_riscv64.ddeb (926.4 KiB)
• gnutls-bin-dbgsym_3.8.3-1.1ubuntu3.1_s390x.ddeb (600.2 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_amd64.deb (263.3 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_arm64.deb (260.3 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_armhf.deb (269.6 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_i386.deb (295.1 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_ppc64el.deb (283.6 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_riscv64.deb (295.5 KiB)
• gnutls-bin_3.8.3-1.1ubuntu3.1_s390x.deb (277.3 KiB)
• gnutls-doc_3.8.3-1.1ubuntu3.1_all.deb (4.3 MiB)
• gnutls28_3.8.3-1.1ubuntu3.1.debian.tar.xz (86.1 KiB)
• gnutls28_3.8.3-1.1ubuntu3.1.dsc (3.3 KiB)
• gnutls28_3.8.3.orig.tar.xz (6.2 MiB)
• gnutls28_3.8.3.orig.tar.xz.asc (854 bytes)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_amd64.ddeb (46.5 KiB)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_arm64.ddeb (46.6 KiB)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_armhf.ddeb (85.5 KiB)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_i386.ddeb (80.3 KiB)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_ppc64el.ddeb (47.6 KiB)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_riscv64.ddeb (83.3 KiB)
• libgnutls-dane0t64-dbgsym_3.8.3-1.1ubuntu3.1_s390x.ddeb (46.9 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_amd64.deb (23.0 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_arm64.deb (23.0 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_armhf.deb (32.6 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_i386.deb (40.2 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_ppc64el.deb (24.1 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_riscv64.deb (39.0 KiB)
• libgnutls-dane0t64_3.8.3-1.1ubuntu3.1_s390x.deb (23.2 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_amd64.ddeb (48.3 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_arm64.ddeb (48.9 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_armhf.ddeb (87.4 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_i386.ddeb (80.8 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_ppc64el.ddeb (50.2 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_riscv64.ddeb (84.2 KiB)
• libgnutls-openssl27t64-dbgsym_3.8.3-1.1ubuntu3.1_s390x.ddeb (48.9 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_amd64.deb (23.2 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_arm64.deb (23.0 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_armhf.deb (32.7 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_i386.deb (40.6 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_ppc64el.deb (23.6 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_riscv64.deb (38.9 KiB)
• libgnutls-openssl27t64_3.8.3-1.1ubuntu3.1_s390x.deb (23.2 KiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_amd64.deb (1.0 MiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_arm64.deb (1.1 MiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_armhf.deb (984.1 KiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_i386.deb (1.1 MiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_ppc64el.deb (1.1 MiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_riscv64.deb (2.5 MiB)
• libgnutls28-dev_3.8.3-1.1ubuntu3.1_s390x.deb (987.5 KiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_amd64.ddeb (2.2 MiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_arm64.ddeb (2.2 MiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_armhf.ddeb (1.9 MiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_i386.ddeb (1.6 MiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_ppc64el.ddeb (2.5 MiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_riscv64.ddeb (1.8 MiB)
• libgnutls30t64-dbgsym_3.8.3-1.1ubuntu3.1_s390x.ddeb (2.1 MiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_amd64.deb (974.1 KiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_arm64.deb (913.4 KiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_armhf.deb (924.7 KiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_i386.deb (987.6 KiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_ppc64el.deb (1.0 MiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_riscv64.deb (988.5 KiB)
• libgnutls30t64_3.8.3-1.1ubuntu3.1_s390x.deb (921.7 KiB)