[CLSA-2026:1780416707] gnutls: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2026-06-02 16:12:02 UTC
Description:
- CVE-2025-6395: harden TLS 1.3 handshake state handling around PSK binders - CVE-2025-9820: harden PKCS#11 token initialization against malformed input
CVEs fixed:
Updated packages:
  • gnutls-3.7.6-23.el9_2.tuxcare.4.els7.i686.rpm
    sha:5e14d25a6dcb298396780956082c88592dcc7afb87038a1aa38d933421f2aa03
  • gnutls-3.7.6-23.el9_2.tuxcare.4.els7.x86_64.rpm
    sha:7c1087efecf7451ca350a6d8ab11f87cff4ab34a2b2f5f6a2604b44220019556
  • gnutls-c++-3.7.6-23.el9_2.tuxcare.4.els7.i686.rpm
    sha:969751fc4521843149fd704f47a19ab11d29c623649cfc8407a806cbc98a9bf4
  • gnutls-c++-3.7.6-23.el9_2.tuxcare.4.els7.x86_64.rpm
    sha:46975a195acff5dff2a27e56238c5afc30e4c57f55d329e1beaeceffbe1a4b45
  • gnutls-dane-3.7.6-23.el9_2.tuxcare.4.els7.i686.rpm
    sha:9a45b13aefdb12c45f5c1a755f45220e398d1f6da74ea0d09918a480092c5a1d
  • gnutls-dane-3.7.6-23.el9_2.tuxcare.4.els7.x86_64.rpm
    sha:d6d893a7875ee39f8d6c4483ded06018fa13300e65d7e0eebe5e1e5b7ff584d6
  • gnutls-devel-3.7.6-23.el9_2.tuxcare.4.els7.i686.rpm
    sha:cb79157108f79faa46571e7683ec92bc91ea08642e5c259ce803ed24445f9a1e
  • gnutls-devel-3.7.6-23.el9_2.tuxcare.4.els7.x86_64.rpm
    sha:95e4f8c7c07d3bb6413cf9a00f383ceda59ac27c167fd6bf021ac49c39579d63
  • gnutls-utils-3.7.6-23.el9_2.tuxcare.4.els7.x86_64.rpm
    sha:bb0021e09980a343fafd6d21bc93c3c9fd3b6179fc34b1258508450fdc2a985b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.