| Name: | gnutls |
|---|---|
| Version: | 3.6.14 |
| Release: | 8.0.1.el8 |
| Architecture: | aarch64 |
| Group: | System Environment/Libraries |
| Size: | 3000823 |
| License: | GPLv3+ and LGPLv2+ |
| RPM: | gnutls-3.6.14-8.0.1.el8.aarch64.rpm |
| Source RPM: | gnutls-3.6.14-8.0.1.el8.src.rpm |
| Build Date: | Thu Sep 02 2021 |
| Build Host: | host-100-100-224-33.blddevtest1iad.osdevelopmeniad.oraclevcn.com |
| Vendor: | Oracle America |
| URL: | http://www.gnutls.org/ |
| Summary: | A TLS protocol implementation |
| Description: | GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures. |
- Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 [Orabug: 33200526] - Allow bigger known RSA modulus sizes when calling rsa_generate_fips186_4_keypair directly [Orabug: 33200526]
- Port fixes for potential miscalculation in ecdsa_verify (#1942929)
- Increase DH key bits to >= 2048 in self-tests (#1879506) - Implement self-tests for KDF and CMAC (#1890870) - Fix CVE-2020-24659: heap buffer-overflow when "no_renegotiation" alert is received (#1873959)
- Fix memory leak when serializing iovec_t (#1844112)
- Perform validation checks on (EC)DH public keys and share secrets (#1855803)
- Tighten FIPS DH primes check according to SP800-56A (rev 3) (#1849079)
- Update gnutls-3.6.14-fips-mode-check.patch
- Return false from gnutls_fips140_mode_enabled() if selftests failed (#1827687)
- Update to upstream 3.6.14 release
- Add an option to gnutls-cli to wait for resumption under TLS 1.3 (#1677754)