[website] r1573 - in html/trunk/blfs/errata: 9.1 9.1-systemd

Wed, 03 Jun 2020 10:48:23 -0700 

Author: renodr
Date: Wed Jun  3 10:31:14 2020
New Revision: 1573

Log:
Errata: Update Errata for GnuTLS cert issue and another security vulnerability.

Modified:
   html/trunk/blfs/errata/9.1-systemd/index.html
   html/trunk/blfs/errata/9.1/index.html

Modified: html/trunk/blfs/errata/9.1-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1-systemd/index.html       Wed Jun  3 10:18:42 
2020        (r1572)
+++ html/trunk/blfs/errata/9.1-systemd/index.html       Wed Jun  3 10:31:14 
2020        (r1573)
@@ -114,10 +114,14 @@
           Bubblewrap. To fix this vulnerability, update to Bubblewrap-0.4.1 or
           later using the instructions in
           <a 
href="../../view/systemd/general/bubblewrap.html">Bubblewrap-0.4.1</a>.</li>
-      <li>After release, a serious security flaw was found in the DTLS
-          implementation in GnuTLS. To fix this vulnerability, update to
-          GnuTLS-3.6.13 or later using the instructions in
-          <a 
href="../../view/systemd/postlfs/gnutls.html">GnuTLS-3.6.13</a>.</li>
+       <li>After release, a serious security flaw was found in the DTLS
+          implementation in GnuTLS. Another security flaw was found in 
+          the way that GnuTLS processed session tickets. A root certificate
+          expired on 5/30/2020 that also broke several websites because GnuTLS
+          didn't have the logic available to switch to an alternate certificate
+          with an identical private key. To fix these vulnerabilities, update 
+          to GnuTLS-3.6.14 or later using the instructions in
+          <a 
href="../../view/systemd/postlfs/gnutls.html">GnuTLS-3.6.14</a>.</li>
       <li>After release, multiple low-severity security flaws were found in
           Apache HTTPD. To fix these vulnerabilities, update to
           httpd-2.4.43 or later using the instructions in

Modified: html/trunk/blfs/errata/9.1/index.html
==============================================================================
--- html/trunk/blfs/errata/9.1/index.html       Wed Jun  3 10:18:42 2020        
(r1572)
+++ html/trunk/blfs/errata/9.1/index.html       Wed Jun  3 10:31:14 2020        
(r1573)
@@ -113,9 +113,13 @@
           later using the instructions in
           <a 
href="../../view/svn/general/bubblewrap.html">Bubblewrap-0.4.1</a>.</li>
       <li>After release, a serious security flaw was found in the DTLS
-          implementation in GnuTLS. To fix this vulnerability, update to
-          GnuTLS-3.6.13 or later using the instructions in
-          <a href="../../view/svn/postlfs/gnutls.html">GnuTLS-3.6.13</a>.</li>
+          implementation in GnuTLS. Another security flaw was found in 
+          the way that GnuTLS processed session tickets. A root certificate
+          expired on 5/30/2020 that also broke several websites because GnuTLS
+          didn't have the logic available to switch to an alternate certificate
+          with an identical private key. To fix these vulnerabilities, update 
+          to GnuTLS-3.6.14 or later using the instructions in
+          <a href="../../view/svn/postlfs/gnutls.html">GnuTLS-3.6.14</a>.</li>
       <li>After release, multiple low-severity security flaws were found in
           Apache HTTPD. To fix these vulnerabilities, update to
           httpd-2.4.43 or later using the instructions in
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to