[Apollo] Advisories Statistics light light Login

RLSA-2026:3477

Security Mirrored from RHSA-2026:3477
Issued at: 2026-03-05
Updated at: 2026-03-05

Synopsis

Moderate: gnutls security update



Description

The gnutls packages provide the GNU Transport Layer Security (GnuTLS) library, which implements cryptographic algorithms and protocols such as SSL, TLS, and DTLS.

Security Fix(es):

* gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function (CVE-2025-9820)

* gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification (CVE-2025-14831)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 10 aarch64 Rocky Linux 10 ppc64le Rocky Linux 10 s390x Rocky Linux 10 x86_64

Fixes

2392528 2423177

CVEs

CVE-2025-14831 CVE-2025-9820

Affected packages

Rocky Linux 10 aarch64 - AppStream

gnutls-devel-0:3.8.10-3.el10_1.aarch64.rpm gnutls-c++-0:3.8.10-3.el10_1.aarch64.rpm gnutls-dane-debuginfo-0:3.8.10-3.el10_1.aarch64.rpm gnutls-utils-debuginfo-0:3.8.10-3.el10_1.aarch64.rpm gnutls-utils-0:3.8.10-3.el10_1.aarch64.rpm gnutls-fips-0:3.8.10-3.el10_1.aarch64.rpm gnutls-dane-0:3.8.10-3.el10_1.aarch64.rpm gnutls-c++-debuginfo-0:3.8.10-3.el10_1.aarch64.rpm

Rocky Linux 10 x86_64 - BaseOS

gnutls-0:3.8.10-3.el10_1.x86_64.rpm gnutls-debuginfo-0:3.8.10-3.el10_1.x86_64.rpm gnutls-debugsource-0:3.8.10-3.el10_1.x86_64.rpm gnutls-0:3.8.10-3.el10_1.src.rpm

Rocky Linux 10 x86_64 - AppStream

gnutls-c++-debuginfo-0:3.8.10-3.el10_1.x86_64.rpm gnutls-fips-0:3.8.10-3.el10_1.x86_64.rpm gnutls-devel-0:3.8.10-3.el10_1.x86_64.rpm gnutls-c++-0:3.8.10-3.el10_1.x86_64.rpm gnutls-dane-0:3.8.10-3.el10_1.x86_64.rpm gnutls-utils-debuginfo-0:3.8.10-3.el10_1.x86_64.rpm gnutls-dane-debuginfo-0:3.8.10-3.el10_1.x86_64.rpm gnutls-utils-0:3.8.10-3.el10_1.x86_64.rpm

Rocky Linux 10 s390x - AppStream

gnutls-utils-debuginfo-0:3.8.10-3.el10_1.s390x.rpm gnutls-c++-0:3.8.10-3.el10_1.s390x.rpm gnutls-dane-debuginfo-0:3.8.10-3.el10_1.s390x.rpm gnutls-fips-0:3.8.10-3.el10_1.s390x.rpm gnutls-utils-0:3.8.10-3.el10_1.s390x.rpm gnutls-devel-0:3.8.10-3.el10_1.s390x.rpm gnutls-c++-debuginfo-0:3.8.10-3.el10_1.s390x.rpm gnutls-dane-0:3.8.10-3.el10_1.s390x.rpm

Rocky Linux 10 s390x - BaseOS

gnutls-debuginfo-0:3.8.10-3.el10_1.s390x.rpm gnutls-debugsource-0:3.8.10-3.el10_1.s390x.rpm gnutls-0:3.8.10-3.el10_1.s390x.rpm gnutls-0:3.8.10-3.el10_1.src.rpm

Rocky Linux 10 ppc64le - AppStream

gnutls-devel-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-utils-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-dane-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-fips-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-dane-debuginfo-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-c++-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-utils-debuginfo-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-c++-debuginfo-0:3.8.10-3.el10_1.ppc64le.rpm

Rocky Linux 10 ppc64le - BaseOS

gnutls-debuginfo-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-debugsource-0:3.8.10-3.el10_1.ppc64le.rpm gnutls-0:3.8.10-3.el10_1.src.rpm gnutls-0:3.8.10-3.el10_1.ppc64le.rpm

Rocky Linux 10 aarch64 - BaseOS

gnutls-debuginfo-0:3.8.10-3.el10_1.aarch64.rpm gnutls-0:3.8.10-3.el10_1.src.rpm gnutls-debugsource-0:3.8.10-3.el10_1.aarch64.rpm gnutls-0:3.8.10-3.el10_1.aarch64.rpm