{"id":"RHSA-2017:2292","summary":"Red Hat Security Advisory: gnutls security, bug fix, and enhancement update","modified":"2026-03-11T07:11:20.150737Z","published":"2024-09-15T23:57:46Z","upstream":["CVE-2016-7444","CVE-2017-5334","CVE-2017-5335","CVE-2017-5336","CVE-2017-5337","CVE-2017-7507","CVE-2017-7869"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2292"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1335931"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1374266"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375303"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1375463"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1378373"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1379283"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1379739"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1380642"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1383748"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1388932"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399232"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1411835"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1411836"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1412235"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1412236"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443033"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1454621"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2292.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-7444"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-7444"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-7444"},{"type":"ARTICLE","url":"https://lists.gnupg.org/pipermail/gnutls-devel/2016-September/008146.html"},{"type":"ARTICLE","url":"https://www.gnutls.org/security.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5334"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5334"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5334"},{"type":"ARTICLE","url":"https://gnutls.org/security.html#GNUTLS-SA-2017-1"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5335"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5335"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5335"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5336"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5336"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5336"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5337"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5337"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5337"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-7507"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-7507"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-7507"},{"type":"ARTICLE","url":"https://www.gnutls.org/security.html#GNUTLS-SA-2017-4"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-7869"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-7869"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-7869"},{"type":"ARTICLE","url":"https://www.gnutls.org/security.html#GNUTLS-SA-2017-3"}],"affected":[{"package":{"name":"gnutls","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/gnutls"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-c++","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/gnutls-c%2B%2B"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-dane","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/gnutls-dane"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/gnutls-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-devel","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/gnutls-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-utils","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/gnutls-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/gnutls"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-c++","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/gnutls-c%2B%2B"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-dane","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/gnutls-dane"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/gnutls-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-devel","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/gnutls-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-utils","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/gnutls-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/gnutls"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-c++","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/gnutls-c%2B%2B"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-dane","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/gnutls-dane"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/gnutls-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-devel","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/gnutls-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-utils","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/gnutls-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/gnutls"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-c++","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/gnutls-c%2B%2B"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-dane","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/gnutls-dane"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/gnutls-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-devel","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/gnutls-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}},{"package":{"name":"gnutls-utils","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/gnutls-utils"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.26-9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2292.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}