SUSE-SU-2017:1886-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 15 Jul 2017, 07:50
Last modified:04 Feb 2026, 02:31

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

15 Jul 2017, 07:50
Published
Vulnerability first disclosed
04 Feb 2026, 02:31
Last Modified
Vulnerability information updated

Description

Security update for gnutls This update for gnutls fixes the following issues: - GNUTLS-SA-2017-3 / CVE-2017-7869: An out-of-bounds write in OpenPGP certificate decoding was fixed (bsc#1034173) - CVE-2017-6891: A potential stack buffer overflow in the bundled libtasn1 was fixed (bsc#1040621) - An address read of 4 bytes past the end of buffer in OpenPGP certificate parsing was fixed (bsc#1038337)

Affected Systems

  • susegnutls&distro=SUSE Linux Enterprise High Availability Extension 11 SP4

    < 2.4.1-24.39.70.1

  • susegnutls&distro=SUSE Linux Enterprise Server 11 SP4

    < 2.4.1-24.39.70.1

  • susegnutls&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP4

    < 2.4.1-24.39.70.1

  • susegnutls&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

    < 2.4.1-24.39.70.1

References (6)