USN-2913-4: GnuTLS update

24 February 2016

gnutls26 update

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS

Summary

Updated GnuTLS packages are required for the USN-2913-1 update.

Software Description

  • gnutls26 - GNU TLS library

Details

USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates package. This update adds support for alternate certificate chains to the GnuTLS package to properly handle the removal.

Original advisory details:

The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 20160104 package, including the removal of the SPI CA and CA certificates with 1024-bit RSA keys.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 14.04 LTS
libgnutls26 - 2.12.23-12ubuntu2.5
Ubuntu 12.04 LTS
libgnutls26 - 2.12.14-5ubuntu3.12

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make all the necessary changes.

References