openSUSE-SU-2026:20446-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20446-1.json

JSON Data

https://api.test.osv.dev/v1/vulns/openSUSE-SU-2026:20446-1

Upstream

CVE-2025-14831

CVE-2025-9820

Related

CVE-2025-14831
CVE-2025-9820

Published

2026-03-30T14:36:07Z

Modified

2026-04-03T17:24:44.688917Z

Summary

Security update for gnutls

Details

This update for gnutls fixes the following issues:

CVE-2025-14831: Fixed DoS via excessive resource consumption during certificate verification. (bsc#1257960)
CVE-2025-9820: Fixed a buffer overflow in gnutlspkcs11token_init. (bsc#1254132)
Add the functionality to allow to specify the hash algorithm for the PSK. This fixes a bug in the current implementation where the binder is always calculated with SHA256. (bsc#1258083, jsc#PED-15752, jsc#PED-15753)

References

Affected packages

openSUSE:Leap 16.0 / gnutls

Package

Name: gnutls
Purl: pkg:rpm/opensuse/gnutls&distro=openSUSE%20Leap%2016.0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.8.10-160000.2.1

Ecosystem specific

{
    "binaries": [
        {
            "libgnutls-devel": "3.8.10-160000.2.1",
            "libgnutls30": "3.8.10-160000.2.1",
            "libgnutlsxx-devel": "3.8.10-160000.2.1",
            "libgnutls-devel-doc": "3.8.10-160000.2.1",
            "gnutls": "3.8.10-160000.2.1",
            "libgnutlsxx30": "3.8.10-160000.2.1"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20446-1.json"