HCE2-SA-2024-0040 Important HCE 2.0 Security Fix(es): A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981. (CVE-2024-0553) A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack. (CVE-2024-0567) HCE 2.0 gnutls-3.7.2-2.r26.hce2.aarch64.rpm gnutls-devel-3.7.2-2.r26.hce2.aarch64.rpm gnutls-help-3.7.2-2.r26.hce2.noarch.rpm gnutls-utils-3.7.2-2.r26.hce2.aarch64.rpm gnutls-3.7.2-2.r26.hce2.x86_64.rpm gnutls-devel-3.7.2-2.r26.hce2.x86_64.rpm gnutls-utils-3.7.2-2.r26.hce2.x86_64.rpm