Security Advisory Important: gnutls security update

Advisory: RHSA-2014:0595-1
Type: Security Advisory
Severity: Important
Issued on: 2014-06-03
Last updated on: 2014-06-03
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server AUS (v. 6.5)
Red Hat Enterprise Linux Server EUS (v. 6.5.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2014-3466

Details

Updated gnutls packages that fix one security issue are now available for
Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having
Important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The GnuTLS library provides support for cryptographic algorithms and for
protocols such as Transport Layer Security (TLS).

A flaw was found in the way GnuTLS parsed session IDs from ServerHello
messages of the TLS/SSL handshake. A malicious server could use this flaw
to send an excessively long session ID value, which would trigger a buffer
overflow in a connecting TLS/SSL client application using GnuTLS, causing
the client application to crash or, possibly, execute arbitrary code.
(CVE-2014-3466)

Red Hat would like to thank GnuTLS upstream for reporting this issue.
Upstream acknowledges Joonas Kuorilehto of Codenomicon as the original
reporter.

Users of GnuTLS are advised to upgrade to these updated packages, which
correct this issue. For the update to take effect, all applications linked
to the GnuTLS library must be restarted.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
gnutls-2.8.5-14.el6_5.src.rpm     MD5: 7a31ab55caf79a16316a2d6ff6d8bf81
SHA-256: b184517bc05937a0befdb580e35a001211a92a8b1f60c625341c4a3c7a144266
 
IA-32:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-utils-2.8.5-14.el6_5.i686.rpm     MD5: e1f3be8338ab1b42812ad851b8bba1e6
SHA-256: 181fc42c13d0c93fef324e0bf4b1f9401ff7daa92cabcce5fb79bac6d16027a4
 
x86_64:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-2.8.5-14.el6_5.x86_64.rpm     MD5: b69424fa3f30ff6e01174fa0af8b0103
SHA-256: 1bc920b6aac999df8d31fcabb6af70a85be0ada5f1be22210618a369909d5252
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-debuginfo-2.8.5-14.el6_5.x86_64.rpm     MD5: 477214193675968cba3e4c42c6e48b7d
SHA-256: 9c3072e7fde07d62816cb03b6ea5e40dcaedbc2911bb05e93a436a197556ed8d
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-devel-2.8.5-14.el6_5.x86_64.rpm     MD5: 3a6093e4a4ebca7eca1b67e430a6c1f0
SHA-256: 12cc7ea26c25c5bf327bf6d16c91bc0ec267e9f54c47a9d814c53110a10006b9
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-guile-2.8.5-14.el6_5.x86_64.rpm     MD5: 28f836e373aa973dfd575681dcf1da7f
SHA-256: 64ed891e6b5bb1eae790f8d50c8c39bf74c7111a1d7985fa006f66663388f294
gnutls-utils-2.8.5-14.el6_5.x86_64.rpm     MD5: aaadd07e9419fa2f474d0e7f174f440b
SHA-256: f3e078faea0f676daae3a360cd01689f24cb446794b20b239cf50d85385732a0
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
gnutls-2.8.5-14.el6_5.src.rpm     MD5: 7a31ab55caf79a16316a2d6ff6d8bf81
SHA-256: b184517bc05937a0befdb580e35a001211a92a8b1f60c625341c4a3c7a144266
 
x86_64:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-2.8.5-14.el6_5.x86_64.rpm     MD5: b69424fa3f30ff6e01174fa0af8b0103
SHA-256: 1bc920b6aac999df8d31fcabb6af70a85be0ada5f1be22210618a369909d5252
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-debuginfo-2.8.5-14.el6_5.x86_64.rpm     MD5: 477214193675968cba3e4c42c6e48b7d
SHA-256: 9c3072e7fde07d62816cb03b6ea5e40dcaedbc2911bb05e93a436a197556ed8d
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-devel-2.8.5-14.el6_5.x86_64.rpm     MD5: 3a6093e4a4ebca7eca1b67e430a6c1f0
SHA-256: 12cc7ea26c25c5bf327bf6d16c91bc0ec267e9f54c47a9d814c53110a10006b9
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-guile-2.8.5-14.el6_5.x86_64.rpm     MD5: 28f836e373aa973dfd575681dcf1da7f
SHA-256: 64ed891e6b5bb1eae790f8d50c8c39bf74c7111a1d7985fa006f66663388f294
gnutls-utils-2.8.5-14.el6_5.x86_64.rpm     MD5: aaadd07e9419fa2f474d0e7f174f440b
SHA-256: f3e078faea0f676daae3a360cd01689f24cb446794b20b239cf50d85385732a0
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
gnutls-2.8.5-14.el6_5.src.rpm     MD5: 7a31ab55caf79a16316a2d6ff6d8bf81
SHA-256: b184517bc05937a0befdb580e35a001211a92a8b1f60c625341c4a3c7a144266
 
IA-32:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-utils-2.8.5-14.el6_5.i686.rpm     MD5: e1f3be8338ab1b42812ad851b8bba1e6
SHA-256: 181fc42c13d0c93fef324e0bf4b1f9401ff7daa92cabcce5fb79bac6d16027a4
 
PPC:
gnutls-2.8.5-14.el6_5.ppc.rpm     MD5: c1225278e37054adf48d601edc0acb46
SHA-256: 1f617edd54150e41b5074b8074d65ff700cde2fe32acda0282d84bd0abcf1da1
gnutls-2.8.5-14.el6_5.ppc64.rpm     MD5: 3b231aaeea12724228e257bf87b45273
SHA-256: 059e6b19206d97a0105428ce02c57d735a3721cca0de881e511a8bd7bcf0557b
gnutls-debuginfo-2.8.5-14.el6_5.ppc.rpm     MD5: 5d9f2c7ab264d17bdcdb29975f2a8dad
SHA-256: e2edee571c09ced896eec652c5a450b58aaab56f459e005e3bdb179299ac55f5
gnutls-debuginfo-2.8.5-14.el6_5.ppc64.rpm     MD5: e20308d0d712df6037606b03f984bb89
SHA-256: 2bb0caa71a62d4b993c2a4ae5f12529acebc5bd5f06f52e5e79ff442b1894648
gnutls-devel-2.8.5-14.el6_5.ppc.rpm     MD5: 231979e8ceb0f9bdf1b7b5769f2652bb
SHA-256: 5dd5db8eac4ace65cbc624e453cc45dd837411a898b83eb75db5e926f3449e0f
gnutls-devel-2.8.5-14.el6_5.ppc64.rpm     MD5: f45efa454503ca931c093a2f5bea384c
SHA-256: b84168ebc53fbd26e3ea7bb97a0cea179229dbd6069e012ab0abf6480073cefa
gnutls-guile-2.8.5-14.el6_5.ppc.rpm     MD5: 4f419432bb553df1a259e0291593c644
SHA-256: 3fec0951980fdc1b0910d30988b3048a3be4fdc4ebfce18fb88adbced6e38f1b
gnutls-guile-2.8.5-14.el6_5.ppc64.rpm     MD5: 43e54912c5828b0580004ac9151a58b4
SHA-256: 07c728f82b13bb6b60e19fd76a396ebcf0df6c615e557287df90bc845ace57e0
gnutls-utils-2.8.5-14.el6_5.ppc64.rpm     MD5: 1e1ddabc77c04042386d1f0f5999f65e
SHA-256: ad3f8f2405260f8f389c45e7f005d546c9831ff4ed3b3ce2b288fd1ec553fe14
 
s390x:
gnutls-2.8.5-14.el6_5.s390.rpm     MD5: fc039659a6b78a26ebe7c6a34fb41588
SHA-256: 7724d015c25cb4628e6f8cdace508ab5cd919c6af346c3551e0b3d0cdc11fd07
gnutls-2.8.5-14.el6_5.s390x.rpm     MD5: 7ff9cf7c33e8a0aba5dbe7ddc59b6307
SHA-256: 427b79b9efec2406b83056b8c57c3e4cb127feee572e0c2cefe30c719c7f1d14
gnutls-debuginfo-2.8.5-14.el6_5.s390.rpm     MD5: 80cc1f563c24b5c54aa438f34c3b2d39
SHA-256: acd020bcbccf22de7741790f8846e5f52f7a0132ee405c0fe7c433017b42be76
gnutls-debuginfo-2.8.5-14.el6_5.s390x.rpm     MD5: 971c507f3549b5b9a82cae6ad4f564d4
SHA-256: 5995d441799561346c7dc3c26e69820da1b5732e14b2bc58b9f9076ba0376adc
gnutls-devel-2.8.5-14.el6_5.s390.rpm     MD5: ff41a7de6e94e5323c6352252a82a216
SHA-256: f71d9c8626e5491e9e5c869a3ea7772ee708383e0aea3feef6e0144e274a96a1
gnutls-devel-2.8.5-14.el6_5.s390x.rpm     MD5: 518f195ee05d67b243b09c8ecde8570f
SHA-256: ec4991482e5209f74ccd375ec7202042bcb4b6e0a46a597fee7b2ee6ec184e3b
gnutls-guile-2.8.5-14.el6_5.s390.rpm     MD5: 620063d1b467d63f007cbd0aa744456b
SHA-256: 34ef2b583f5c3e32f15f8efb73090f008ced392baaa8e022e2e7fad01126957a
gnutls-guile-2.8.5-14.el6_5.s390x.rpm     MD5: 702a86b325e502d9a4df4a61cd47c4a8
SHA-256: 330b8ff27175a872a75075ff08aa0913fa6291e2f2e8bc4b0920530a1f87f27a
gnutls-utils-2.8.5-14.el6_5.s390x.rpm     MD5: 0877c62b33f57f4ea999284a97533389
SHA-256: ff16d35d433fd8fb119c8daf148a5e568fd89299dca24e06c2da136fe965a177
 
x86_64:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-2.8.5-14.el6_5.x86_64.rpm     MD5: b69424fa3f30ff6e01174fa0af8b0103
SHA-256: 1bc920b6aac999df8d31fcabb6af70a85be0ada5f1be22210618a369909d5252
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-debuginfo-2.8.5-14.el6_5.x86_64.rpm     MD5: 477214193675968cba3e4c42c6e48b7d
SHA-256: 9c3072e7fde07d62816cb03b6ea5e40dcaedbc2911bb05e93a436a197556ed8d
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-devel-2.8.5-14.el6_5.x86_64.rpm     MD5: 3a6093e4a4ebca7eca1b67e430a6c1f0
SHA-256: 12cc7ea26c25c5bf327bf6d16c91bc0ec267e9f54c47a9d814c53110a10006b9
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-guile-2.8.5-14.el6_5.x86_64.rpm     MD5: 28f836e373aa973dfd575681dcf1da7f
SHA-256: 64ed891e6b5bb1eae790f8d50c8c39bf74c7111a1d7985fa006f66663388f294
gnutls-utils-2.8.5-14.el6_5.x86_64.rpm     MD5: aaadd07e9419fa2f474d0e7f174f440b
SHA-256: f3e078faea0f676daae3a360cd01689f24cb446794b20b239cf50d85385732a0
 
Red Hat Enterprise Linux Server AUS (v. 6.5)

SRPMS:
gnutls-2.8.5-14.el6_5.src.rpm     MD5: 7a31ab55caf79a16316a2d6ff6d8bf81
SHA-256: b184517bc05937a0befdb580e35a001211a92a8b1f60c625341c4a3c7a144266
 
x86_64:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-2.8.5-14.el6_5.x86_64.rpm     MD5: b69424fa3f30ff6e01174fa0af8b0103
SHA-256: 1bc920b6aac999df8d31fcabb6af70a85be0ada5f1be22210618a369909d5252
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-debuginfo-2.8.5-14.el6_5.x86_64.rpm     MD5: 477214193675968cba3e4c42c6e48b7d
SHA-256: 9c3072e7fde07d62816cb03b6ea5e40dcaedbc2911bb05e93a436a197556ed8d
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-devel-2.8.5-14.el6_5.x86_64.rpm     MD5: 3a6093e4a4ebca7eca1b67e430a6c1f0
SHA-256: 12cc7ea26c25c5bf327bf6d16c91bc0ec267e9f54c47a9d814c53110a10006b9
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-guile-2.8.5-14.el6_5.x86_64.rpm     MD5: 28f836e373aa973dfd575681dcf1da7f
SHA-256: 64ed891e6b5bb1eae790f8d50c8c39bf74c7111a1d7985fa006f66663388f294
gnutls-utils-2.8.5-14.el6_5.x86_64.rpm     MD5: aaadd07e9419fa2f474d0e7f174f440b
SHA-256: f3e078faea0f676daae3a360cd01689f24cb446794b20b239cf50d85385732a0
 
Red Hat Enterprise Linux Server EUS (v. 6.5.z)

SRPMS:
gnutls-2.8.5-14.el6_5.src.rpm     MD5: 7a31ab55caf79a16316a2d6ff6d8bf81
SHA-256: b184517bc05937a0befdb580e35a001211a92a8b1f60c625341c4a3c7a144266
 
IA-32:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-utils-2.8.5-14.el6_5.i686.rpm     MD5: e1f3be8338ab1b42812ad851b8bba1e6
SHA-256: 181fc42c13d0c93fef324e0bf4b1f9401ff7daa92cabcce5fb79bac6d16027a4
 
PPC:
gnutls-2.8.5-14.el6_5.ppc.rpm     MD5: c1225278e37054adf48d601edc0acb46
SHA-256: 1f617edd54150e41b5074b8074d65ff700cde2fe32acda0282d84bd0abcf1da1
gnutls-2.8.5-14.el6_5.ppc64.rpm     MD5: 3b231aaeea12724228e257bf87b45273
SHA-256: 059e6b19206d97a0105428ce02c57d735a3721cca0de881e511a8bd7bcf0557b
gnutls-debuginfo-2.8.5-14.el6_5.ppc.rpm     MD5: 5d9f2c7ab264d17bdcdb29975f2a8dad
SHA-256: e2edee571c09ced896eec652c5a450b58aaab56f459e005e3bdb179299ac55f5
gnutls-debuginfo-2.8.5-14.el6_5.ppc64.rpm     MD5: e20308d0d712df6037606b03f984bb89
SHA-256: 2bb0caa71a62d4b993c2a4ae5f12529acebc5bd5f06f52e5e79ff442b1894648
gnutls-devel-2.8.5-14.el6_5.ppc.rpm     MD5: 231979e8ceb0f9bdf1b7b5769f2652bb
SHA-256: 5dd5db8eac4ace65cbc624e453cc45dd837411a898b83eb75db5e926f3449e0f
gnutls-devel-2.8.5-14.el6_5.ppc64.rpm     MD5: f45efa454503ca931c093a2f5bea384c
SHA-256: b84168ebc53fbd26e3ea7bb97a0cea179229dbd6069e012ab0abf6480073cefa
gnutls-guile-2.8.5-14.el6_5.ppc.rpm     MD5: 4f419432bb553df1a259e0291593c644
SHA-256: 3fec0951980fdc1b0910d30988b3048a3be4fdc4ebfce18fb88adbced6e38f1b
gnutls-guile-2.8.5-14.el6_5.ppc64.rpm     MD5: 43e54912c5828b0580004ac9151a58b4
SHA-256: 07c728f82b13bb6b60e19fd76a396ebcf0df6c615e557287df90bc845ace57e0
gnutls-utils-2.8.5-14.el6_5.ppc64.rpm     MD5: 1e1ddabc77c04042386d1f0f5999f65e
SHA-256: ad3f8f2405260f8f389c45e7f005d546c9831ff4ed3b3ce2b288fd1ec553fe14
 
s390x:
gnutls-2.8.5-14.el6_5.s390.rpm     MD5: fc039659a6b78a26ebe7c6a34fb41588
SHA-256: 7724d015c25cb4628e6f8cdace508ab5cd919c6af346c3551e0b3d0cdc11fd07
gnutls-2.8.5-14.el6_5.s390x.rpm     MD5: 7ff9cf7c33e8a0aba5dbe7ddc59b6307
SHA-256: 427b79b9efec2406b83056b8c57c3e4cb127feee572e0c2cefe30c719c7f1d14
gnutls-debuginfo-2.8.5-14.el6_5.s390.rpm     MD5: 80cc1f563c24b5c54aa438f34c3b2d39
SHA-256: acd020bcbccf22de7741790f8846e5f52f7a0132ee405c0fe7c433017b42be76
gnutls-debuginfo-2.8.5-14.el6_5.s390x.rpm     MD5: 971c507f3549b5b9a82cae6ad4f564d4
SHA-256: 5995d441799561346c7dc3c26e69820da1b5732e14b2bc58b9f9076ba0376adc
gnutls-devel-2.8.5-14.el6_5.s390.rpm     MD5: ff41a7de6e94e5323c6352252a82a216
SHA-256: f71d9c8626e5491e9e5c869a3ea7772ee708383e0aea3feef6e0144e274a96a1
gnutls-devel-2.8.5-14.el6_5.s390x.rpm     MD5: 518f195ee05d67b243b09c8ecde8570f
SHA-256: ec4991482e5209f74ccd375ec7202042bcb4b6e0a46a597fee7b2ee6ec184e3b
gnutls-guile-2.8.5-14.el6_5.s390.rpm     MD5: 620063d1b467d63f007cbd0aa744456b
SHA-256: 34ef2b583f5c3e32f15f8efb73090f008ced392baaa8e022e2e7fad01126957a
gnutls-guile-2.8.5-14.el6_5.s390x.rpm     MD5: 702a86b325e502d9a4df4a61cd47c4a8
SHA-256: 330b8ff27175a872a75075ff08aa0913fa6291e2f2e8bc4b0920530a1f87f27a
gnutls-utils-2.8.5-14.el6_5.s390x.rpm     MD5: 0877c62b33f57f4ea999284a97533389
SHA-256: ff16d35d433fd8fb119c8daf148a5e568fd89299dca24e06c2da136fe965a177
 
x86_64:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-2.8.5-14.el6_5.x86_64.rpm     MD5: b69424fa3f30ff6e01174fa0af8b0103
SHA-256: 1bc920b6aac999df8d31fcabb6af70a85be0ada5f1be22210618a369909d5252
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-debuginfo-2.8.5-14.el6_5.x86_64.rpm     MD5: 477214193675968cba3e4c42c6e48b7d
SHA-256: 9c3072e7fde07d62816cb03b6ea5e40dcaedbc2911bb05e93a436a197556ed8d
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-devel-2.8.5-14.el6_5.x86_64.rpm     MD5: 3a6093e4a4ebca7eca1b67e430a6c1f0
SHA-256: 12cc7ea26c25c5bf327bf6d16c91bc0ec267e9f54c47a9d814c53110a10006b9
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-guile-2.8.5-14.el6_5.x86_64.rpm     MD5: 28f836e373aa973dfd575681dcf1da7f
SHA-256: 64ed891e6b5bb1eae790f8d50c8c39bf74c7111a1d7985fa006f66663388f294
gnutls-utils-2.8.5-14.el6_5.x86_64.rpm     MD5: aaadd07e9419fa2f474d0e7f174f440b
SHA-256: f3e078faea0f676daae3a360cd01689f24cb446794b20b239cf50d85385732a0
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
gnutls-2.8.5-14.el6_5.src.rpm     MD5: 7a31ab55caf79a16316a2d6ff6d8bf81
SHA-256: b184517bc05937a0befdb580e35a001211a92a8b1f60c625341c4a3c7a144266
 
IA-32:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-utils-2.8.5-14.el6_5.i686.rpm     MD5: e1f3be8338ab1b42812ad851b8bba1e6
SHA-256: 181fc42c13d0c93fef324e0bf4b1f9401ff7daa92cabcce5fb79bac6d16027a4
 
x86_64:
gnutls-2.8.5-14.el6_5.i686.rpm     MD5: 25fb7ee38c770cf78877ec2076e0433c
SHA-256: 514d785b5fba1f1eaae310a148cb6d8de7353b0dfbdce0907767a13fc4618405
gnutls-2.8.5-14.el6_5.x86_64.rpm     MD5: b69424fa3f30ff6e01174fa0af8b0103
SHA-256: 1bc920b6aac999df8d31fcabb6af70a85be0ada5f1be22210618a369909d5252
gnutls-debuginfo-2.8.5-14.el6_5.i686.rpm     MD5: 8ed2fb63e2b540b5f941e20d9daa0282
SHA-256: b378c32b52303a76f9ed3f1660293598186ed160eb897f776fe250fde3781e4a
gnutls-debuginfo-2.8.5-14.el6_5.x86_64.rpm     MD5: 477214193675968cba3e4c42c6e48b7d
SHA-256: 9c3072e7fde07d62816cb03b6ea5e40dcaedbc2911bb05e93a436a197556ed8d
gnutls-devel-2.8.5-14.el6_5.i686.rpm     MD5: c3ab2868949508ee9ef45963ce5a2b01
SHA-256: 1a63e0ee4deb750ca1c6c09eeea1a701bfa18b0e764e33ba3d623a42a93b5df5
gnutls-devel-2.8.5-14.el6_5.x86_64.rpm     MD5: 3a6093e4a4ebca7eca1b67e430a6c1f0
SHA-256: 12cc7ea26c25c5bf327bf6d16c91bc0ec267e9f54c47a9d814c53110a10006b9
gnutls-guile-2.8.5-14.el6_5.i686.rpm     MD5: 7f6cf2819092aee1f0fe20547c793f16
SHA-256: ca62dccd14aa1a70f0e16ac369b27aea92d53fd32ee78f3ced1ca9600a4d17d4
gnutls-guile-2.8.5-14.el6_5.x86_64.rpm     MD5: 28f836e373aa973dfd575681dcf1da7f
SHA-256: 64ed891e6b5bb1eae790f8d50c8c39bf74c7111a1d7985fa006f66663388f294
gnutls-utils-2.8.5-14.el6_5.x86_64.rpm     MD5: aaadd07e9419fa2f474d0e7f174f440b
SHA-256: f3e078faea0f676daae3a360cd01689f24cb446794b20b239cf50d85385732a0
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1101932 - CVE-2014-3466 gnutls: insufficient session id length check in _gnutls_read_server_hello (GNUTLS-SA-2014-3)


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/