Red Hat Product Errata RHBA-2013:0028 - Bug Fix Advisory
Issued:
2013-01-07
Updated:
2013-01-07

RHBA-2013:0028 - Bug Fix Advisory

Synopsis

gnutls bug fix update

Type/Severity

Bug Fix Advisory

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated gnutls packages that fix three bugs are now available for Red Hat
Enterprise Linux 5.

Description

The gnutls packages provides the GNU Transport Layer Security (GnuTLS) library,
which provides a secure layer over a transport layer using protocols such as
TLS, SSL, and DTLS.

This update fixes the following bugs:

  • The gnutls packages reported wrong distinguished names (DNs) for chain CA

certificates used for the client authentication; the issuer DN was reported
instead of the subject DN. As a consequence, the TLS clients were not able to
provide a client certificate signed by a chain CA certificate when connecting to
a gnutls TLS server. The underlying source code has been modified and gnutls now
reports the right DN and the TLS clients work as expected in the described
scenario. (BZ#592112)

  • Previously, in the certool utility was a missing check used for an empty

string when a challenge password was entered. Consequently, certificate requests
generated by certtool were sometimes invalid when an empty challenge password
was used. This missing empty-string check has been added and now the certtool's
certificate requests are valid even if the challenge password is not entered.
(BZ#730816)

  • Under certain circumstances, a null pointer could be dereferenced in the

GnuTLS library. This caused TLS clients, such as the rsyslog utility, to
terminate unexpectedly with a segmentation fault. This update adds a test
condition ensuring that null pointers can no longer be dereferenced and TLS
clients no longer crash. (BZ#785001)

All users of gnutls are advised to upgrade to these updated packages, which fix
these bugs.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server 5 x86_64
  • Red Hat Enterprise Linux Server 5 ia64
  • Red Hat Enterprise Linux Server 5 i386
  • Red Hat Enterprise Linux Workstation 5 x86_64
  • Red Hat Enterprise Linux Workstation 5 i386
  • Red Hat Enterprise Linux Desktop 5 x86_64
  • Red Hat Enterprise Linux Desktop 5 i386
  • Red Hat Enterprise Linux for IBM z Systems 5 s390x
  • Red Hat Enterprise Linux for Power, big endian 5 ppc
  • Red Hat Enterprise Linux Server from RHUI 5 x86_64
  • Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

(none)

CVEs

(none)

References

(none)

Red Hat Enterprise Linux Server 5

SRPM
gnutls-1.4.1-10.el5.src.rpm SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
x86_64
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.x86_64.rpm SHA-256: c8eebd82d59ead211932b1725f2a117b3683e10185b092838c82bf701caa61f1
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-devel-1.4.1-10.el5.i386.rpm SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-devel-1.4.1-10.el5.x86_64.rpm SHA-256: 9153081d29639fb51427d74deb52372d85e100357fe3d4a568f0f179a373067b
gnutls-utils-1.4.1-10.el5.x86_64.rpm SHA-256: 6759941d1d96ff232c7cb33331111ae05c2cd0c7aaf0897abd31126ad27e56ea
ia64
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.ia64.rpm SHA-256: 75cae23628b8d7621985d7e5776c66415321310ebf37ab465c3aa2423ca9ba1e
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.ia64.rpm SHA-256: 75c5022df6aa60f3456d09d95c61ea84357fddec88ad8f941216c06b90381fca
gnutls-devel-1.4.1-10.el5.ia64.rpm SHA-256: 6c6c54c8e5d6b0d2ff6f7bee5438d889a2a1e2080680f6e3c4a16a30b3ebab01
gnutls-utils-1.4.1-10.el5.ia64.rpm SHA-256: a24ae428c69a998d790e8e4a8f9a00bd86ec0bdbf8cb3389eb4247629fc2a2bd
i386
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-devel-1.4.1-10.el5.i386.rpm SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-utils-1.4.1-10.el5.i386.rpm SHA-256: d4912a5c99373fc2e3b1a7e5c4586a16208d05eca884123954931dd34c0ab90e

Red Hat Enterprise Linux Workstation 5

SRPM
gnutls-1.4.1-10.el5.src.rpm SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
x86_64
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.x86_64.rpm SHA-256: c8eebd82d59ead211932b1725f2a117b3683e10185b092838c82bf701caa61f1
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-devel-1.4.1-10.el5.i386.rpm SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-devel-1.4.1-10.el5.x86_64.rpm SHA-256: 9153081d29639fb51427d74deb52372d85e100357fe3d4a568f0f179a373067b
gnutls-utils-1.4.1-10.el5.x86_64.rpm SHA-256: 6759941d1d96ff232c7cb33331111ae05c2cd0c7aaf0897abd31126ad27e56ea
i386
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-devel-1.4.1-10.el5.i386.rpm SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-utils-1.4.1-10.el5.i386.rpm SHA-256: d4912a5c99373fc2e3b1a7e5c4586a16208d05eca884123954931dd34c0ab90e

Red Hat Enterprise Linux Desktop 5

SRPM
gnutls-1.4.1-10.el5.src.rpm SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
x86_64
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.x86_64.rpm SHA-256: c8eebd82d59ead211932b1725f2a117b3683e10185b092838c82bf701caa61f1
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-utils-1.4.1-10.el5.x86_64.rpm SHA-256: 6759941d1d96ff232c7cb33331111ae05c2cd0c7aaf0897abd31126ad27e56ea
i386
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-utils-1.4.1-10.el5.i386.rpm SHA-256: d4912a5c99373fc2e3b1a7e5c4586a16208d05eca884123954931dd34c0ab90e

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
gnutls-1.4.1-10.el5.src.rpm SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
s390x
gnutls-1.4.1-10.el5.s390.rpm SHA-256: 1605a50aef40250b270e44631e4d0d94f383244019bc8dc8d04515613dba257b
gnutls-1.4.1-10.el5.s390x.rpm SHA-256: 4a5973c41b450fd9035c52593c078be1b73c7838afae382c79a1bac31db6883f
gnutls-debuginfo-1.4.1-10.el5.s390.rpm SHA-256: 9ba55d68c80ffaad4484a7f6138dd6bae32b9ee5958dd3d4ec61a8abe69872af
gnutls-debuginfo-1.4.1-10.el5.s390x.rpm SHA-256: 5e1718201ad0d6db16c4b4c6cfa7bd24886f8f00798f0cb728dd761bfa308fd8
gnutls-devel-1.4.1-10.el5.s390.rpm SHA-256: b2c3236cdd2feb7e0d7e725425fab0a319d2402baea50c54f9caa0af037c0a81
gnutls-devel-1.4.1-10.el5.s390x.rpm SHA-256: b7d8e96753fb6cf3b1e1b77a6404669de9adf3a86f45a54fed8fa619a7beebf0
gnutls-utils-1.4.1-10.el5.s390x.rpm SHA-256: c8613d5f0c2b720c64642e6218dc883e791686c8b9a4465a6739117b400a49fc

Red Hat Enterprise Linux for Power, big endian 5

SRPM
gnutls-1.4.1-10.el5.src.rpm SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
ppc
gnutls-1.4.1-10.el5.ppc.rpm SHA-256: d8feec6e3ae5e8bfebe9f3c186211c955e4ad2d4f53233594c12a8ea4db1fed2
gnutls-1.4.1-10.el5.ppc64.rpm SHA-256: 52f722a9ff4331bd8a86d3baa4fcf81d9a6b96414295aeb9836ee1ed03f8bd44
gnutls-debuginfo-1.4.1-10.el5.ppc.rpm SHA-256: 966aea4885e291244e15f4b5ced76935d3a5d9bc5ad357ba0b93528673ceb481
gnutls-debuginfo-1.4.1-10.el5.ppc64.rpm SHA-256: d04c400b68f2c2ff39d58ce7c201003e6510d77581f4c1b5a43928b707e877d8
gnutls-devel-1.4.1-10.el5.ppc.rpm SHA-256: a341aa1941c37f6108c8dc0d80d6ae8ce4520d272a0b60ccca00cda1e2b1a121
gnutls-devel-1.4.1-10.el5.ppc64.rpm SHA-256: 0b8684c66538d13c53ee1065a1867ccda269bb8fdea3600ea7db472f2d5abd26
gnutls-utils-1.4.1-10.el5.ppc.rpm SHA-256: 46ce57219cfc6d9d809ae178f90a6bf886b84c7ceabd66f3269119a0b1da303d

Red Hat Enterprise Linux Server from RHUI 5

SRPM
gnutls-1.4.1-10.el5.src.rpm SHA-256: 92366d2aaec2e6c4f64dfca022c3660e97040442d0bf379027d0b60d324f2367
x86_64
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-1.4.1-10.el5.x86_64.rpm SHA-256: c8eebd82d59ead211932b1725f2a117b3683e10185b092838c82bf701caa61f1
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-debuginfo-1.4.1-10.el5.x86_64.rpm SHA-256: 3b6231a3063bc81a10c4f711e4b30349520e59816f653483ded8922ebf8c756d
gnutls-devel-1.4.1-10.el5.i386.rpm SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-devel-1.4.1-10.el5.x86_64.rpm SHA-256: 9153081d29639fb51427d74deb52372d85e100357fe3d4a568f0f179a373067b
gnutls-utils-1.4.1-10.el5.x86_64.rpm SHA-256: 6759941d1d96ff232c7cb33331111ae05c2cd0c7aaf0897abd31126ad27e56ea
i386
gnutls-1.4.1-10.el5.i386.rpm SHA-256: 46c7d05f43298537f2f2409020b3b6fb83f0b9e879dee3d67f465a7493e07893
gnutls-debuginfo-1.4.1-10.el5.i386.rpm SHA-256: 6adb243556cac760502c3f795cd05d46956113c03202e207ec2b63aba0f2f66c
gnutls-devel-1.4.1-10.el5.i386.rpm SHA-256: 9ca6df07ad06550d7977dc609552e198f9a779c915513593d1c2873b5f53dd54
gnutls-utils-1.4.1-10.el5.i386.rpm SHA-256: d4912a5c99373fc2e3b1a7e5c4586a16208d05eca884123954931dd34c0ab90e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.