[ubuntu/questing-updates] gnutls28 3.8.9-3ubuntu2.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Mon Feb 16 14:58:34 UTC 2026
gnutls28 (3.8.9-3ubuntu2.1) questing-security; urgency=medium
* SECURITY UPDATE: DoS via malicious certificates
- debian/patches/CVE-2025-14831-*.patch: rework processing algorithms
to exhibit better performance characteristics in
lib/x509/name_constraints.c, tests/name-constraints-ip.c.
- CVE-2025-14831
* SECURITY UPDATE: stack overflow via long token label
- debian/patches/CVE-2025-9820.patch: avoid stack overwrite when
initializing a token in lib/pkcs11_write.c, tests/Makefile.am,
tests/pkcs11/long-label.c.
- CVE-2025-9820
Date: 2026-02-10 19:02:35.986544+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/gnutls28/3.8.9-3ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list