Security update for gnutls
This update for gnutls fixes the following issues:
Security issue fixed:
- CVE-2018-16868: Fixed Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification (bsc#1118087).
Non-security issue fixed:
- Explicitly require libnettle 3.4.1 to prevent missing symbol errors (bsc#1134856).
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Vítězslav Čížek (vitezslav_cizek)
Fixed bugs
bnc#1134856
lib64/libgnutls.so: undefined reference to `nettle_rsa_sec_decrypt@HOGWEED_4' in libgnutls 3.6.7-6.8.1
bnc#1118087
VUL-0: CVE-2018-16868: gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification
