Advisory: CLSA-2025:1758915712
OS: Ubuntu 18.04 ELS
Public date: 2025-09-26 19:41:57.445837
Project: gnutls28
Version: 3.5.18-1ubuntu1.6+tuxcare.els2
Errata link: https://errata.tuxcare.com/els_os/ubuntu18.04els/CLSA-2025-1758915712.html
* SECURITY UPDATE: double-free when exporting SAN otherName - debian/patches/CVE-2025-32988.patch: fix double-free triggered when exporting certificates with multiple SAN otherName entries. - CVE-2025-32988 * SECURITY UPDATE: 1-byte heap write in certtool template parsing - debian/patches/CVE-2025-32990.patch: prevent 1-byte heap overwrite caused by malformed certificate template input in certtool. - CVE-2025-32990
Update command: apt-get update apt-get --only-upgrade install gnutls28*
gnutls-bin_3.5.18-1ubuntu1.6+tuxcare.els2_amd64.deb gnutls-doc_3.5.18-1ubuntu1.6+tuxcare.els2_all.deb libgnutls-dane0_3.5.18-1ubuntu1.6+tuxcare.els2_amd64.deb libgnutls-openssl27_3.5.18-1ubuntu1.6+tuxcare.els2_amd64.deb libgnutls28-dev_3.5.18-1ubuntu1.6+tuxcare.els2_amd64.deb libgnutls30_3.5.18-1ubuntu1.6+tuxcare.els2_amd64.deb libgnutlsxx28_3.5.18-1ubuntu1.6+tuxcare.els2_amd64.deb