Release Info

Advisory: CLSA-2025:1759247437

OS: AlmaLinux 9.2 ESU

Public date: 2025-09-30 15:50:39.390378

Project: gnutls

Version: 3.7.6-23.el9_2.tuxcare.4.els1

Errata link: https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1759247437.html

Changelog

- CVE-2025-32990: fix memory corruption in when parsing a template file - CVE-2025-32988: fix double-free vulnerability in export logic of Subject Alternative Name (SAN) entries containing an otherName

Update

Update command: dnf update gnutls*

Packages list

gnutls-3.7.6-23.el9_2.tuxcare.4.els1.i686.rpm gnutls-3.7.6-23.el9_2.tuxcare.4.els1.x86_64.rpm gnutls-c++-3.7.6-23.el9_2.tuxcare.4.els1.i686.rpm gnutls-c++-3.7.6-23.el9_2.tuxcare.4.els1.x86_64.rpm gnutls-dane-3.7.6-23.el9_2.tuxcare.4.els1.i686.rpm gnutls-dane-3.7.6-23.el9_2.tuxcare.4.els1.x86_64.rpm gnutls-devel-3.7.6-23.el9_2.tuxcare.4.els1.i686.rpm gnutls-devel-3.7.6-23.el9_2.tuxcare.4.els1.x86_64.rpm gnutls-utils-3.7.6-23.el9_2.tuxcare.4.els1.x86_64.rpm

CVEs

CVE-2025-32990
CVE-2025-32988