Skip to navigation

Bug Fix Advisory gnutls bug fix update

Advisory: RHBA-2013:0028-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2013-01-07
Last updated on: 2013-01-07
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)

Details

Updated gnutls packages that fix three bugs are now available for Red Hat
Enterprise Linux 5.

The gnutls packages provides the GNU Transport Layer Security (GnuTLS) library,
which provides a secure layer over a transport layer using protocols such as
TLS, SSL, and DTLS.

This update fixes the following bugs:

* The gnutls packages reported wrong distinguished names (DNs) for chain CA
certificates used for the client authentication; the issuer DN was reported
instead of the subject DN. As a consequence, the TLS clients were not able to
provide a client certificate signed by a chain CA certificate when connecting to
a gnutls TLS server. The underlying source code has been modified and gnutls now
reports the right DN and the TLS clients work as expected in the described
scenario. (BZ#592112)

* Previously, in the certool utility was a missing check used for an empty
string when a challenge password was entered. Consequently, certificate requests
generated by certtool were sometimes invalid when an empty challenge password
was used. This missing empty-string check has been added and now the certtool's
certificate requests are valid even if the challenge password is not entered.
(BZ#730816)

* Under certain circumstances, a null pointer could be dereferenced in the
GnuTLS library. This caused TLS clients, such as the rsyslog utility, to
terminate unexpectedly with a segmentation fault. This update adds a test
condition ensuring that null pointers can no longer be dereferenced and TLS
clients no longer crash. (BZ#785001)

All users of gnutls are advised to upgrade to these updated packages, which fix
these bugs.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
gnutls-1.4.1-10.el5.src.rpm
File outdated by:  RHSA-2014:0247
    MD5: 1ad3f5638dbdcf8551c76752cf878722
SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
 
IA-32:
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-devel-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3b4df19ac869d45fa3ff81de1bad9452
SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
 
x86_64:
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3ad19b34a7e3d9c2478512f313387ae5
SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-devel-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3b4df19ac869d45fa3ff81de1bad9452
SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-devel-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 6830366f3a7f87548b401fe5fcb9dda9
SHA-256: 9153081d29639fb51427d74deb52372d85e100357fe3d4a568f0f179a373067b
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
gnutls-1.4.1-10.el5.src.rpm
File outdated by:  RHSA-2014:0247
    MD5: 1ad3f5638dbdcf8551c76752cf878722
SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
 
IA-32:
gnutls-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: efe9185782cbcfb9dc0d5617ffad07f5
SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-devel-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3b4df19ac869d45fa3ff81de1bad9452
SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-utils-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: a206763a2ac1b4e8c8b78bdfdf3ab779
SHA-256: d4912a5c99373fc2e3b1a7e5c4586a16208d05eca884123954931dd34c0ab90e
 
IA-64:
gnutls-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: efe9185782cbcfb9dc0d5617ffad07f5
SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.ia64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3138c426ee23e3dd34c6db576ed4c1df
SHA-256: 75cae23628b8d7621985d7e5776c66415321310ebf37ab465c3aa2423ca9ba1e
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.ia64.rpm
File outdated by:  RHSA-2014:0247
    MD5: d91fd17d6e5d63769ab99472054c9bf4
SHA-256: 75c5022df6aa60f3456d09d95c61ea84357fddec88ad8f941216c06b90381fca
gnutls-devel-1.4.1-10.el5.ia64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 93caa5cfd84b69578f82b3977f67fcfc
SHA-256: 6c6c54c8e5d6b0d2ff6f7bee5438d889a2a1e2080680f6e3c4a16a30b3ebab01
gnutls-utils-1.4.1-10.el5.ia64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 9b0b6a169f161447723ef195787afc5c
SHA-256: a24ae428c69a998d790e8e4a8f9a00bd86ec0bdbf8cb3389eb4247629fc2a2bd
 
PPC:
gnutls-1.4.1-10.el5.ppc.rpm
File outdated by:  RHSA-2014:0247
    MD5: c5d592ca2ceb907bd6a461f43106ff8e
SHA-256: d8feec6e3ae5e8bfebe9f3c186211c955e4ad2d4f53233594c12a8ea4db1fed2
gnutls-1.4.1-10.el5.ppc64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 14c8b143e6fe1c765d3371966e099f6b
SHA-256: 52f722a9ff4331bd8a86d3baa4fcf81d9a6b96414295aeb9836ee1ed03f8bd44
gnutls-debuginfo-1.4.1-10.el5.ppc.rpm
File outdated by:  RHSA-2014:0247
    MD5: ab27837a3ce13af63832c84f41865a63
SHA-256: 966aea4885e291244e15f4b5ced76935d3a5d9bc5ad357ba0b93528673ceb481
gnutls-debuginfo-1.4.1-10.el5.ppc64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 4a36239ab6e47709560e9efd299c93a6
SHA-256: d04c400b68f2c2ff39d58ce7c201003e6510d77581f4c1b5a43928b707e877d8
gnutls-devel-1.4.1-10.el5.ppc.rpm
File outdated by:  RHSA-2014:0247
    MD5: 241feeb01bc94fed09d7e00ed229fb05
SHA-256: a341aa1941c37f6108c8dc0d80d6ae8ce4520d272a0b60ccca00cda1e2b1a121
gnutls-devel-1.4.1-10.el5.ppc64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 034111c6decdff50813b3b0d821f4433
SHA-256: 0b8684c66538d13c53ee1065a1867ccda269bb8fdea3600ea7db472f2d5abd26
gnutls-utils-1.4.1-10.el5.ppc.rpm
File outdated by:  RHSA-2014:0247
    MD5: 2a240c26d8b923a8f2188c895234259e
SHA-256: 46ce57219cfc6d9d809ae178f90a6bf886b84c7ceabd66f3269119a0b1da303d
 
s390x:
gnutls-1.4.1-10.el5.s390.rpm
File outdated by:  RHSA-2014:0247
    MD5: d10f033505254e16f7f5e3b37d7533c5
SHA-256: 1605a50aef40250b270e44631e4d0d94f383244019bc8dc8d04515613dba257b
gnutls-1.4.1-10.el5.s390x.rpm
File outdated by:  RHSA-2014:0247
    MD5: 2444864a4ce35d02c6cbe441fdb2c292
SHA-256: 4a5973c41b450fd9035c52593c078be1b73c7838afae382c79a1bac31db6883f
gnutls-debuginfo-1.4.1-10.el5.s390.rpm
File outdated by:  RHSA-2014:0247
    MD5: 179fa364915dfb8ca5cfe413cc6dea2a
SHA-256: 9ba55d68c80ffaad4484a7f6138dd6bae32b9ee5958dd3d4ec61a8abe69872af
gnutls-debuginfo-1.4.1-10.el5.s390x.rpm
File outdated by:  RHSA-2014:0247
    MD5: c90a0be78bf85977ef1242baabf4e64e
SHA-256: 5e1718201ad0d6db16c4b4c6cfa7bd24886f8f00798f0cb728dd761bfa308fd8
gnutls-devel-1.4.1-10.el5.s390.rpm
File outdated by:  RHSA-2014:0247
    MD5: fc24d392c0220268665437a7080b1696
SHA-256: b2c3236cdd2feb7e0d7e725425fab0a319d2402baea50c54f9caa0af037c0a81
gnutls-devel-1.4.1-10.el5.s390x.rpm
File outdated by:  RHSA-2014:0247
    MD5: f16dda9ef89af9d44401d92d4201c836
SHA-256: b7d8e96753fb6cf3b1e1b77a6404669de9adf3a86f45a54fed8fa619a7beebf0
gnutls-utils-1.4.1-10.el5.s390x.rpm
File outdated by:  RHSA-2014:0247
    MD5: 14ecf78bde6c7610ef2167d28c23b8dd
SHA-256: c8613d5f0c2b720c64642e6218dc883e791686c8b9a4465a6739117b400a49fc
 
x86_64:
gnutls-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: efe9185782cbcfb9dc0d5617ffad07f5
SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 9301d167014bacdeb402a65e90351d5c
SHA-256: c8eebd82d59ead211932b1725f2a117b3683e10185b092838c82bf701caa61f1
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3ad19b34a7e3d9c2478512f313387ae5
SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-devel-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3b4df19ac869d45fa3ff81de1bad9452
SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-devel-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 6830366f3a7f87548b401fe5fcb9dda9
SHA-256: 9153081d29639fb51427d74deb52372d85e100357fe3d4a568f0f179a373067b
gnutls-utils-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: d97e8dd2e2d1630ae956289c2bff5f4f
SHA-256: 6759941d1d96ff232c7cb33331111ae05c2cd0c7aaf0897abd31126ad27e56ea
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
gnutls-1.4.1-10.el5.src.rpm
File outdated by:  RHSA-2014:0247
    MD5: 1ad3f5638dbdcf8551c76752cf878722
SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
 
IA-32:
gnutls-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: efe9185782cbcfb9dc0d5617ffad07f5
SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-utils-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: a206763a2ac1b4e8c8b78bdfdf3ab779
SHA-256: d4912a5c99373fc2e3b1a7e5c4586a16208d05eca884123954931dd34c0ab90e
 
x86_64:
gnutls-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: efe9185782cbcfb9dc0d5617ffad07f5
SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 9301d167014bacdeb402a65e90351d5c
SHA-256: c8eebd82d59ead211932b1725f2a117b3683e10185b092838c82bf701caa61f1
gnutls-debuginfo-1.4.1-10.el5.i386.rpm
File outdated by:  RHSA-2014:0247
    MD5: 29e72b7e9860016d2ff787ef5e0e2847
SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: 3ad19b34a7e3d9c2478512f313387ae5
SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-utils-1.4.1-10.el5.x86_64.rpm
File outdated by:  RHSA-2014:0247
    MD5: d97e8dd2e2d1630ae956289c2bff5f4f
SHA-256: 6759941d1d96ff232c7cb33331111ae05c2cd0c7aaf0897abd31126ad27e56ea
 
(The unlinked packages above are only available from the Red Hat Network)


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/