A flaw was found in the way GnuTLS decrypted TLS record packets when using CBC encryption. The number of pad bytes read form the packet was not checked against the cipher text size, resulting in an out of bounds read. This could cause a TLS client or server using GnuTLS to crash. This problem was introduced by a fix for Lucky 13 issue CVE-2013-1619, released in Red Hat Enterprise Linux 5 and 6 via RHSA-2013:0588: https://rhn.redhat.com/errata/RHSA-2013-0588.html This issue did not affect GnuTLS 3.x which used different patch for Lucky 13, only patch for 2.x, which did not implement all protections to avoid leak of timing information, contains this bug. Issue was reported on upstream mailing list: http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/6753 Following patch was applied upstream: https://gitorious.org/gnutls/gnutls/commit/5164d5a1d57cd0372a5dd074382ca960ca18b27d
First reported via: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=709301
Making bug public.
Created mingw-gnutls tracking bugs for this issue Affects: fedora-all [bug 968448]
Created gnutls tracking bugs for this issue Affects: fedora-all [bug 968447]
Upstream advisory GNUTLS-SA-2013-2: http://www.gnutls.org/security.html#GNUTLS-SA-2013-2
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Via RHSA-2013:0883 https://rhn.redhat.com/errata/RHSA-2013-0883.html
mingw-gnutls-2.12.23-2.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
gnutls-2.12.23-2.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
mingw-gnutls-2.12.23-2.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
gnutls-2.12.23-2.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in following products: RHEV-H and Agents for RHEL-6 Via RHSA-2013:1076 https://rhn.redhat.com/errata/RHSA-2013-1076.html