| Name: | gnutls-c++ |
|---|---|
| Epoch: | 10 |
| Version: | 3.7.6 |
| Release: | 23.el9_3.4_fips |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 137120 |
| License: | GPLv3+ and LGPLv2+ |
| RPM: | gnutls-c++-3.7.6-23.el9_3.4_fips.aarch64.rpm |
| Source RPM: | gnutls-3.7.6-23.el9_3.4_fips.src.rpm |
| Build Date: | Thu Apr 18 2024 |
| Build Host: | build-ol9-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | http://www.gnutls.org/ |
| Summary: | The C++ interface to GnuTLS |
| Description: | GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures. |
- Add FIPS package change: add fips suffix to Release and set Epoch to 10 [Orabug: 35925409] - Update FIPS module name for Oracle Linux [Orabug: 35925409] - Verify salt length and iteration count for PBKDF [Orabug: 35925409]
- Fix timing side-channel in deterministic ECDSA (RHEL-28958) - Fix potential crash during chain building/verification (RHEL-28953)
- x509: detect loop in certificate chain (RHEL-21759) - fips: Zeroize temporary values in integrity check (RHEL-21870)
- auth/rsa_psk: minimize branching after decryption
- auth/rsa_psk: side-step potential side-channel (RHEL-16755)
- Mark SHA-1 signature verification non-approved in FIPS (#2102751)
- Skip KTLS test on old kernel if host and target arches are different
- Require use of extended master secret in FIPS mode by default (#2157953)
- Fix the previous change (#2175214)
- Bump release to ensure el9 package is greater than el9_* packages (#2175214)