Security update for gmp, gnutls, libnettle
This update for gmp, gnutls, libnettle fixes the following issues:
Security issue fixed:
- CVE-2020-11501: Fixed zero random value in DTLS client hello (bsc#1168345)
FIPS related bugfixes:
- FIPS: Install checksums for binary integrity verification which are
required when running in FIPS mode (bsc#1152692, jsc#SLE-9518)
- FIPS: Fixed a cfb8 decryption issue, no longer truncate output IV if
input is shorter than block size. (bsc#1166881)
- FIPS: Added Diffie Hellman public key verification test. (bsc#1155327)
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Vítězslav Čížek (vitezslav_cizek)
Fixed bugs
bnc#1152692
Make GnuTLS ready for FIPS certification
bnc#1166881
FIPS: gnutls: cfb8 decryption issue
bnc#1155327
FIPS: add DH key test
bnc#1168345
VUL-0: gnutls: DTLS client hello contains a random value of all zeroes
