Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Obsolete
Priority: Minor
Fix Version/s: None
Affects Version/s: rhel-10.0
Component/s: gnutls
Labels:
None

Regression:
No
Severity:
Low
Epic Link:
CRYPTO-15111
sprint_count:
1

AssignedTeam:
rhel-security-crypto
Sub-System Group:

ssg_security

Story Points:
0.5
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
Crypto25Q1

Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/142055
Test Coverage:
None

Experience:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

When using gnutls-3.8.8-1.el10.x86_64, the tlsfuzzer test-tls13-mlkem.py script fails for the following test cases:

secp256r1mlkem768: invalid ECDH point format: compressed
secp256r1mlkem768: invalid ECDH point format: hybrid
secp256r1mlkem768: invalid ECDH point format: raw
secp256r1mlkem768: malformed pqc part, variable 0
secp256r1mlkem768: malformed pqc part, variable 1
secp256r1mlkem768: malformed pqc part, variable 2
secp256r1mlkem768: malformed pqc part, variable 3
x25519mlkem768: malformed pqc part, variable 0
x25519mlkem768: malformed pqc part, variable 1
x25519mlkem768: malformed pqc part, variable 2
x25519mlkem768: malformed pqc part, variable 3

relates to

RHEL-82081 GnuTLS error checking for hybrid PQC is incomplete/incorrect (on non-x86_64?)

Release Pending

links to

https://gitlab.com/gnutls/gnutls/-/issues/1607

RHSA-2024:142055 gnutls bug fix and enhancement update

Assignee:: Daiki Ueno

Reporter:: Alicja Kario

Developer:: Daiki Ueno

QA Contact:: Alexander Sosedkin

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2024/11/12 1:22 PM

Updated:: 2025/05/13 10:45 AM

Resolved:: 2025/03/04 10:01 AM

Next Planned Release Date:: 2025/05/13

Release Date:: 2025/05/13