vulnerability

Ubuntu: USN-4233-2: GnuTLS update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:N)	Jan 23, 2020	Jan 24, 2020	Feb 19, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:N)

Published

Jan 23, 2020

Added

Jan 24, 2020

Modified

Feb 19, 2025

Description

USN-4233-1 disabled SHA1 being used for digital signature operations in GnuTLS. In certain network environments, certificates using SHA1 may still be in use. This update adds the %VERIFY_ALLOW_BROKEN and %VERIFY_ALLOW_SIGN_WITH_SHA1 priority strings that can be used to temporarily re-enable SHA1 until certificates can be replaced with a stronger algorithm.

Original advisory details:

As a security improvement, this update marks SHA1 as being untrusted for digital signature operations.

Solution

ubuntu-upgrade-libgnutls30

References

UBUNTU-USN-4233-1
UBUNTU-USN-4233-2

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today