[Apollo] Advisories Statistics light light Login

RLSA-2026:20611

Security Mirrored from RHSA-2026:20611
Issued at: 2026-05-29
Updated at: 2026-05-29

Synopsis

Important: gnutls security update



Description

Please update the gnutls packages to provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.

Security Fix(es):

* gnutls: Add more checks to DTLS reassembly (CVE-2026-33846)

* gnutls: Fix qsort comparator in DTLS reassembly (CVE-2026-42009)

* gnutls: Fix crashing on an underflow with a DTLS datagram (CVE-2026-33845)

* gnutls: Fix RSA-PSK identity truncation (CVE-2026-42010)

* gnutls: Fix case-sensitivity of domain name comparison in name constraints (CVE-2026-3833)

* gnutls: Fix intersecting empty constraints (CVE-2026-42011)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2445763 2450624 2450625 2467279 2467289 2467437 2467441 2467448 2467450 2467451 2467678

CVEs

CVE-2026-33845 CVE-2026-33846 CVE-2026-3833 CVE-2026-42009 CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013 CVE-2026-42014 CVE-2026-42015 CVE-2026-5260

Affected packages

Rocky Linux 8 aarch64 - BaseOS

gnutls-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-0:3.6.16-8.el8_10.6.src.rpm gnutls-debuginfo-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-debugsource-0:3.6.16-8.el8_10.6.aarch64.rpm

Rocky Linux 8 x86_64 - BaseOS

gnutls-0:3.6.16-8.el8_10.6.i686.rpm gnutls-0:3.6.16-8.el8_10.6.src.rpm gnutls-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-debuginfo-0:3.6.16-8.el8_10.6.i686.rpm gnutls-debuginfo-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-debugsource-0:3.6.16-8.el8_10.6.i686.rpm gnutls-debugsource-0:3.6.16-8.el8_10.6.x86_64.rpm

Rocky Linux 8 aarch64 - AppStream

gnutls-c++-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-c++-debuginfo-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-dane-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-dane-debuginfo-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-devel-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-utils-0:3.6.16-8.el8_10.6.aarch64.rpm gnutls-utils-debuginfo-0:3.6.16-8.el8_10.6.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

gnutls-c++-0:3.6.16-8.el8_10.6.i686.rpm gnutls-c++-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-c++-debuginfo-0:3.6.16-8.el8_10.6.i686.rpm gnutls-c++-debuginfo-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-dane-0:3.6.16-8.el8_10.6.i686.rpm gnutls-dane-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-dane-debuginfo-0:3.6.16-8.el8_10.6.i686.rpm gnutls-dane-debuginfo-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-devel-0:3.6.16-8.el8_10.6.i686.rpm gnutls-devel-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-utils-0:3.6.16-8.el8_10.6.x86_64.rpm gnutls-utils-debuginfo-0:3.6.16-8.el8_10.6.x86_64.rpm