Opened 17 months ago

Closed 17 months ago

#18862 closed enhancement (fixed)

gnutls-3.8.2

Reported by: Bruce Dubbs Owned by: Douglas R. Reno
Priority: elevated Milestone: 12.1
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version.

Change History (3)

comment:1 by Xi Ruoyao, 17 months ago

Priority: normalelevated
  • Version 3.8.2 (released 2023-11-14)

libgnutls: Fix timing side-channel inside RSA-PSK key exchange.

[GNUTLS-SA-2023-10-23, CVSS: medium] [CVE-2023-5981]

libgnutls: Add API functions to perform ECDH and DH key agreement

The functionality has been there for a long time though they were not available as part of the public API. This enables applications to implement custom protocols leveraging non-interactive key agreement with ECDH and DH.

libgnutls: Added support for AES-GCM-SIV ciphers (RFC 8452)

The new algorithms GNUTLS_CIPHER_AES_128_SIV_GCM and GNUTLS_CIPHER_AES_256_SIV_GCM have been added to be used through the AEAD interface. Note that, unlike GNUTLS_CIPHER_AES_{128,256}_SIV_GCM, the authentication tag is appended to the ciphertext, not prepended.

libgnutls: transparent KTLS support is extended to FreeBSD kernel

The kernel TLS feature can now be enabled on FreeBSD as well as Linux when compiled with the --enable-ktls configure option.

gnutls-cli: New option --starttls-name

comment:2 by Douglas R. Reno, 17 months ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:3 by Douglas R. Reno, 17 months ago

Resolution: fixed
Status: assignedclosed

Fixed at 892c41bd0bd9c19268dc4d2ee58c9216312edac0

SA-12.0-045 issued

Note: See TracTickets for help on using tickets.