Login
Newsletter
Werbung

Sicherheit: Aktualisierung in GnuTLS (Aktualisierung)
Aktuelle Meldungen Distributionen
Name: Aktualisierung in GnuTLS (Aktualisierung)
ID: USN-4233-2
Distribution: Ubuntu
Plattformen: Ubuntu 16.04 LTS, Ubuntu 18.04 LTS
Datum: Do, 23. Januar 2020, 22:38
Referenzen: Keine Angabe
Applikationen: GNU Transport Layer Security Library
Update von: Aktualisierung in GnuTLS

Originalnachricht

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============4706827418045617114==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="Pf143X7Pa0ah27DSULxVcAw3DKxMwSSxp"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--Pf143X7Pa0ah27DSULxVcAw3DKxMwSSxp
Content-Type: multipart/mixed;
boundary="M2mlhRH05lr97nswC9MpZC468oAG7YQSn"

--M2mlhRH05lr97nswC9MpZC468oAG7YQSn
Content-Type: text/plain; charset=utf-8
Content-Language: en-C
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-4233-2
January 23, 2020

gnutls28 update
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

USN-4233-1 marked SHA1 as untrusted in GnuTLS with no workaround.

Software Description:
- gnutls28: GNU TLS library

Details:

USN-4233-1 disabled SHA1 being used for digital signature operations in
GnuTLS. In certain network environments, certificates using SHA1 may still
be in use. This update adds the %VERIFY_ALLOW_BROKEN and
%VERIFY_ALLOW_SIGN_WITH_SHA1 priority strings that can be used to
temporarily re-enable SHA1 until certificates can be replaced with a
stronger algorithm.

Original advisory details:

As a security improvement, this update marks SHA1 as being untrusted for
digital signature operations.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
libgnutls30 3.5.18-1ubuntu1.3

Ubuntu 16.04 LTS:
libgnutls30 3.4.10-4ubuntu1.7

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4233-2
https://usn.ubuntu.com/4233-1
https://launchpad.net/bugs/1860656

Package Information:
https://launchpad.net/ubuntu/+source/gnutls28/3.5.18-1ubuntu1.3
https://launchpad.net/ubuntu/+source/gnutls28/3.4.10-4ubuntu1.7


--M2mlhRH05lr97nswC9MpZC468oAG7YQSn--

--Pf143X7Pa0ah27DSULxVcAw3DKxMwSSxp
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEUMSg3c8x5FLOsZtRZWnYVadEvpMFAl4p3ssACgkQZWnYVadE
vpPTwQ//Wca8UwF/+Zn7N/eKqkmc4262oLl4co+baj7yPaMonU/1BYyHRdBbtVWE
p9aDWXv+Oz9pcgTDWwqjDSw3+ev7iT/hz0o4Z0RrHmQDxru5IbntYK6JW0GTbkaQ
sitL9+7SeKgGKtwRLDvfjgLkn1orE06yknCrM+DGox314nGpckcydQ3DkOA85znW
D48iemKjeYjVO6qW35MiJ+VbCOQYw6ZYsuEG9aGQhHctif4nq4JBJ6uL/3JrmrOD
yUc6zOGh3p2eZKhi5UiG8tJ1ng2Xt97EjjbOAkICxGmF9JPy9mN2taUmQno4sHQs
CKoK1SBQOedPv5h2d5kh+e2C9meD+V3ti1gMwnlLTpScnwAKi0kcBWyVPymKo8az
Enmp/SW+M51vSGa3GrzOjFKJEJa4hJYUlXpcCrzQ9uXVR1+qDcwB1pv30gaDp132
t7UHNRRS1VAfMcz5Jgthi4oK6LnU133LpKHhdgdZc/trckRiAkm2XLOudms4ZQNG
z+YThYsOhppgNek2vq+x+M4j4UdxCyjL0gwjThJzOE9aVyMOoJVqhiBYUOGtH4xD
gbfQFW/Dk1n3ifj8W3htzMaW9asaixYO/bacVnYaJeYdzIPbfRQcEpjZ/Z/kqC1t
qv/bbs6Qd5PH7/Zz9/8h7LchyACZlGG0Nfhag+j6PcDydNWJP3E=
=Hp0p
-----END PGP SIGNATURE-----

--Pf143X7Pa0ah27DSULxVcAw3DKxMwSSxp--


--===============4706827418045617114==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5
LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl
IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj
dXJpdHktYW5ub3VuY2UK

--===============4706827418045617114==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung