UbuntuUpdates.org

Package "gnutls28"

Name: gnutls28

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • GNU TLS library - commandline utilities

Latest version: 3.8.9-3ubuntu2.1
Release: questing (25.10)
Level: security
Repository: universe

Links



Other versions of "gnutls28" in Questing

Repository Area Version
base main 3.8.9-3ubuntu2
base universe 3.8.9-3ubuntu2
security main 3.8.9-3ubuntu2.1
updates main 3.8.9-3ubuntu2.1
updates universe 3.8.9-3ubuntu2.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 3.8.9-3ubuntu2.1 2026-02-16 16:07:58 UTC

  gnutls28 (3.8.9-3ubuntu2.1) questing-security; urgency=medium

  * SECURITY UPDATE: DoS via malicious certificates
    - debian/patches/CVE-2025-14831-*.patch: rework processing algorithms
      to exhibit better performance characteristics in
      lib/x509/name_constraints.c, tests/name-constraints-ip.c.
    - CVE-2025-14831
  * SECURITY UPDATE: stack overflow via long token label
    - debian/patches/CVE-2025-9820.patch: avoid stack overwrite when
      initializing a token in lib/pkcs11_write.c, tests/Makefile.am,
      tests/pkcs11/long-label.c.
    - CVE-2025-9820

 -- Marc Deslauriers <email address hidden> Tue, 10 Feb 2026 09:22:00 -0500

CVE-2025-14831 A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via
CVE-2025-9820 A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a tok



About   -   Send Feedback to @ubuntu_updates