CVE-2020-11501

Published: 3 April 2020

GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 (2018-07-16) because of an error in a 2017-10-06 commit. The DTLS client always uses 32 '\0' bytes instead of a random value, and thus contributes no randomness to a DTLS negotiation. This breaks the security guarantees of the DTLS protocol.

Priority

CVSS 3 base score: 7.4

Status

Package	Release	Status
gnutls28 Launchpad, Ubuntu, Debian	bionic	Not vulnerable (3.5.18-1ubuntu1.3)
	eoan	Released (3.6.9-5ubuntu1.1)
	precise	Does not exist
	trusty	Does not exist
	upstream	Released (3.6.13-2)
	xenial	Not vulnerable (3.4.10-4ubuntu1.7)
	Patches: upstream: https://gitlab.com/gnutls/gnutls/-/commit/c01011c2d8533dbbbe754e49e256c109cb848d0d

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11501
https://www.gnutls.org/security-new.html#GNUTLS-SA-2020-03-31
https://gitlab.com/gnutls/gnutls/-/commit/5b595e8e52653f6c5726a4cdd8fddeb6e83804d2
https://ubuntu.com/security/notices/USN-4322-1
NVD
Launchpad
Debian

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=955556
https://gitlab.com/gnutls/gnutls/-/issues/960

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›