Security update for gnutls SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:2842-1 Final 1 1 2018-09-24T10:55:04Z current 2018-09-24T10:55:04Z 2018-09-24T10:55:04Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gnutls This update for gnutls fixes the following issues: Security issues fixed: - Improved mitigations against Lucky 13 class of attacks - 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery (CVE-2018-10846, bsc#1105460) - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant (CVE-2018-10845, bsc#1105459) - HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls (CVE-2018-10844, bsc#1105437) - The _asn1_check_identifier function in Libtasn1 caused a NULL pointer dereference and crash (CVE-2017-10790, bsc#1047002) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP3-2018-1990,SUSE-SLE-SDK-12-SP3-2018-1990,SUSE-SLE-SERVER-12-SP3-2018-1990 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20182842-1/ Link for SUSE-SU-2018:2842-1 https://lists.suse.com/pipermail/sle-security-updates/2018-September/004593.html E-Mail link for SUSE-SU-2018:2842-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1047002 SUSE Bug 1047002 https://bugzilla.suse.com/1105437 SUSE Bug 1105437 https://bugzilla.suse.com/1105459 SUSE Bug 1105459 https://bugzilla.suse.com/1105460 SUSE Bug 1105460 https://www.suse.com/security/cve/CVE-2017-10790/ SUSE CVE CVE-2017-10790 page https://www.suse.com/security/cve/CVE-2018-10844/ SUSE CVE CVE-2018-10844 page https://www.suse.com/security/cve/CVE-2018-10845/ SUSE CVE CVE-2018-10845 page https://www.suse.com/security/cve/CVE-2018-10846/ SUSE CVE CVE-2018-10846 page SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 gnutls-3.3.27-3.3.1 libgnutls28-3.3.27-3.3.1 libgnutls28-32bit-3.3.27-3.3.1 libgnutls-devel-3.3.27-3.3.1 libgnutls-openssl-devel-3.3.27-3.3.1 libgnutlsxx-devel-3.3.27-3.3.1 libgnutlsxx28-3.3.27-3.3.1 libgnutls-openssl27-3.3.27-3.3.1 gnutls-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libgnutls28-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libgnutls28-32bit-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 gnutls-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP3 libgnutls-openssl27-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP3 libgnutls28-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP3 libgnutls28-32bit-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP3 gnutls-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libgnutls-openssl27-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libgnutls28-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libgnutls28-32bit-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libgnutls-devel-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libgnutls-openssl-devel-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libgnutlsxx-devel-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libgnutlsxx28-3.3.27-3.3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node structure. It may lead to a remote denial of service attack. CVE-2017-10790 SUSE Linux Enterprise Desktop 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-openssl-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx28-3.3.27-3.3.1 low 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182842-1/ https://www.suse.com/security/cve/CVE-2017-10790.html CVE-2017-10790 https://bugzilla.suse.com/1047002 SUSE Bug 1047002 https://bugzilla.suse.com/1047453 SUSE Bug 1047453 It was found that the GnuTLS implementation of HMAC-SHA-256 was vulnerable to a Lucky thirteen style attack. Remote attackers could use this flaw to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data using crafted packets. CVE-2018-10844 SUSE Linux Enterprise Desktop 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-openssl-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx28-3.3.27-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182842-1/ https://www.suse.com/security/cve/CVE-2018-10844.html CVE-2018-10844 https://bugzilla.suse.com/1105437 SUSE Bug 1105437 https://bugzilla.suse.com/1105459 SUSE Bug 1105459 It was found that the GnuTLS implementation of HMAC-SHA-384 was vulnerable to a Lucky thirteen style attack. Remote attackers could use this flaw to conduct distinguishing attacks and plain text recovery attacks via statistical analysis of timing data using crafted packets. CVE-2018-10845 SUSE Linux Enterprise Desktop 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-openssl-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx28-3.3.27-3.3.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182842-1/ https://www.suse.com/security/cve/CVE-2018-10845.html CVE-2018-10845 https://bugzilla.suse.com/1105437 SUSE Bug 1105437 https://bugzilla.suse.com/1105459 SUSE Bug 1105459 A cache-based side channel in GnuTLS implementation that leads to plain text recovery in cross-VM attack setting was found. An attacker could use a combination of "Just in Time" Prime+probe attack in combination with Lucky-13 attack to recover plain text using crafted packets. CVE-2018-10846 SUSE Linux Enterprise Desktop 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Desktop 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:gnutls-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls-openssl27-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-3.3.27-3.3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libgnutls28-32bit-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutls-openssl-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx-devel-3.3.27-3.3.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libgnutlsxx28-3.3.27-3.3.1 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20182842-1/ https://www.suse.com/security/cve/CVE-2018-10846.html CVE-2018-10846 https://bugzilla.suse.com/1105460 SUSE Bug 1105460