The Slackware Linux Project: Slackware Security Advisories

Slackware Security Advisories

News

Security Advisories

FAQ
Book
General Info
Get Slack
Install Help
Configuration
Packages
ChangeLogs
Propaganda
Ports
Other Sites
Support
Contact
Mailing Lists

About

From: root@slackware.com
From owner-slackware-security@connie.slackware.com Thu Jul 10 16:42:50 2025
Received: from connie.slackware.com (localhost [127.0.0.1])
by connie.slackware.com (8.14.3/8.14.3) with ESMTP id 56ANgopI006766;
Thu, 10 Jul 2025 16:42:50 -0700
Received: (from daemon@localhost)
by connie.slackware.com (8.14.3/8.14.3/Submit) id 56ANgoMZ006765;
Thu, 10 Jul 2025 16:42:50 -0700
Received: from connie.slackware.com (localhost [127.0.0.1])
by connie.slackware.com (8.14.3/8.14.3) with ESMTP id 56ANgnIa006762
for <slackware-security@slackware.com>; Thu, 10 Jul 2025 16:42:49 -0700
Received: (from root@localhost)
by connie.slackware.com (8.14.3/8.14.3/Submit) id 56ANgma9006760
for slackware-security@slackware.com; Thu, 10 Jul 2025 16:42:48 -0700
Date: Thu, 10 Jul 2025 16:42:48 -0700
From: root@slackware.com
Message-Id: <202507102342.56ANgma9006760@connie.slackware.com>
[ The following text is in the "X-UNKNOWN" character set. ]
[ Your display is set for the "ISO-8859-1" character set. ]
[ Some characters may be displayed incorrectly. ]
Sender: owner-slackware-security@slackware.com
Precedence: bulk
Reply-To: root@slackware.com
From owner-slackware-security@connie.slackware.com Thu Jul 10 16:42:50 2025
Received: from connie.slackware.com (localhost [127.0.0.1])
by connie.slackware.com (8.14.3/8.14.3) with ESMTP id 56ANgopI006766;
Thu, 10 Jul 2025 16:42:50 -0700
Received: (from daemon@localhost)
by connie.slackware.com (8.14.3/8.14.3/Submit) id 56ANgoMZ006765;
Thu, 10 Jul 2025 16:42:50 -0700
Received: from connie.slackware.com (localhost [127.0.0.1])
by connie.slackware.com (8.14.3/8.14.3) with ESMTP id 56ANgnIa006762
for <slackware-security@slackware.com>; Thu, 10 Jul 2025 16:42:49 -0700
Received: (from root@localhost)
by connie.slackware.com (8.14.3/8.14.3/Submit) id 56ANgma9006760
for slackware-security@slackware.com; Thu, 10 Jul 2025 16:42:48 -0700
Date: Thu, 10 Jul 2025 16:42:48 -0700
From: root@slackware.com
Message-Id: <202507102342.56ANgma9006760@connie.slackware.com>
[ The following text is in the "X-UNKNOWN" character set. ]
[ Your display is set for the "ISO-8859-1" character set. ]
[ Some characters may be displayed incorrectly. ]
Sender: owner-slackware-security@slackware.com
Precedence: bulk
Reply-To: root@slackware.com
Date: Thu, 10 Jul 2025 16:42:48 -0700

Received: from connie.slackware.com (localhost [127.0.0.1])
	by connie.slackware.com (8.14.3/8.14.3) with ESMTP id 56ANgEPi006672
	for <slackware-security@slackware.com>; Thu, 10 Jul 2025 16:42:14 -0700
Received: from localhost (security@localhost)
	by connie.slackware.com (8.14.3/8.14.3/Submit) with ESMTP id 56ANgECO006669
	for <slackware-security@slackware.com>; Thu, 10 Jul 2025 16:42:14 -0700
Date: Thu, 10 Jul 2025 16:42:14 -0700 (PDT)
From: Slackware Security Team <security@slackware.com>
To: slackware-security@slackware.com
Subject: [slackware-security]  gnutls (SSA:2025-191-01)
Message-ID: <alpine.LNX.2.02.2507101641590.5490@connie.slackware.com>
User-Agent: Alpine 2.02 (LNX 1266 2009-07-14)
MIME-Version: 1.0
Content-Type: MULTIPART/MIXED; BOUNDARY="960504934-1586331464-1752190934=:5490"

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

--960504934-1586331464-1752190934=:5490
Content-Type: TEXT/PLAIN; charset=ISO-8859-1
Content-Transfer-Encoding: 8BIT


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  gnutls (SSA:2025-191-01)

New gnutls packages are available for Slackware 15.0 and -current to
fix security issues.


Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/gnutls-3.8.10-i586-1_slack15.0.txz:  Upgraded.
  This update fixes security issues:
  libgnutls: Fix NULL pointer dereference when 2nd Client Hello omits PSK.
  Reported by Stefan B??hler
  libgnutls: Fix heap read buffer overrun in parsing X.509 SCTS timestamps.
  Spotted by oss-fuzz and reported by OpenAI Security Research Team,
  and fix developed by Andrew Hamilton.
  libgnutls: Fix double-free upon error when exporting otherName in SAN.
  Reported by OpenAI Security Research Team.
  certtool: Fix 1-byte write buffer overrun when parsing template.
  Reported by David Aitel.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2025-6395
    https://www.cve.org/CVERecord?id=CVE-2025-32989
    https://www.cve.org/CVERecord?id=CVE-2025-32988
    https://www.cve.org/CVERecord?id=CVE-2025-32990
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/gnutls-3.8.10-i586-1_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/gnutls-3.8.10-x86_64-1_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/gnutls-3.8.10-i686-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/gnutls-3.8.10-x86_64-1.txz


MD5 signatures:
+-------------+

Slackware 15.0 package:
aa7e51e3b8f9b0274eaa5c8a8b494ec3  gnutls-3.8.10-i586-1_slack15.0.txz

Slackware x86_64 15.0 package:
1810a5c0c06e4486c2bab10d8e7434dd  gnutls-3.8.10-x86_64-1_slack15.0.txz

Slackware -current package:
9ce83422fbc028b4334cb63231ee13b0  n/gnutls-3.8.10-i686-1.txz

Slackware x86_64 -current package:
5905edccc85d9c89ce05084be96c3706  n/gnutls-3.8.10-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg gnutls-3.8.10-i586-1_slack15.0.txz


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

+------------------------------------------------------------------------+
| To leave the slackware-security mailing list:                          |
+------------------------------------------------------------------------+
| Send an email to majordomo@slackware.com with this text in the body of |
| the email message:                                                     |
|                                                                        |
|   unsubscribe slackware-security                                       |
|                                                                        |
| You will get a confirmation message back containing instructions to    |
| complete the process.  Please do not reply to this email address.      |
+------------------------------------------------------------------------+
-----BEGIN PGP SIGNATURE-----

iF0EARECAB0WIQTsVknaQB4iq/pnNu9qRGPAQBAiMwUCaHBJlwAKCRBqRGPAQBAi
M2CrAJ9Mjr9bDYlvTm6clEsxPDHzBqLzogCgiTz10j718fe8KR6wHe7jnDnJFAs=
=GxCi
-----END PGP SIGNATURE-----
--960504934-1586331464-1752190934=:5490--

Slackware™ is a trademark of Patrick Volkerding.