Advisory: CLSA-2025:1758915545
OS: Ubuntu 16.04 ELS
Public date: 2025-09-26 19:39:07.75443
Project: gnutls28
Version: 3.4.10-4ubuntu1.9+tuxcare.els1
Errata link: https://errata.tuxcare.com/els_os/ubuntu16.04els/CLSA-2025-1758915545.html
* SECURITY UPDATE: double-free when exporting SAN otherName - debian/patches/CVE-2025-32988.patch: fix double-free triggered when exporting certificates with multiple SAN otherName entries. - CVE-2025-32988 * SECURITY UPDATE: 1-byte heap write in certtool template parsing - debian/patches/CVE-2025-32990.patch: prevent 1-byte heap overwrite caused by malformed certificate template input in certtool. - CVE-2025-32990
Update command: apt-get update apt-get --only-upgrade install gnutls28*
gnutls-bin_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb gnutls-doc_3.4.10-4ubuntu1.9+tuxcare.els1_all.deb guile-gnutls_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb libgnutls-dev_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb libgnutls-openssl27_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb libgnutls28-dev_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb libgnutls30_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb libgnutlsxx28_3.4.10-4ubuntu1.9+tuxcare.els1_amd64.deb