CVE-2024-0553

Gnutls: incomplete fix for cve-2023-5981

Published: 1/16/2024 Last updated: 2/25/2026 Reserved: 1/15/2024

A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the response times of ciphertexts with correct PKCS#1 v1.5 padding. This issue may allow a remote attacker to perform a timing side-channel attack in the RSA-PSK key exchange, potentially leading to the leakage of sensitive data. CVE-2024-0553 is designated as an incomplete resolution for CVE-2023-5981.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7.5	High	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Version

Score

Severity

Vector String

3.1

7.5

High

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Products affected (44)

Product	Vendor	Version
Red Hat Enterprise Linux 6	Red Hat	<= 5.17.*
Red Hat Enterprise Linux 7	Red Hat	<= 5.18.*
RHODF-4.15-RHEL-9	Red Hat	< 830c5aa302ec16b4ee641aec769462c37f802c90
RHODF-4.15-RHEL-9	Red Hat	< 2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
RHODF-4.15-RHEL-9	Red Hat	< 170325aba4608bde3e7d21c9c19b7bc266ac0885
RHODF-4.15-RHEL-9	Red Hat	< ae3d57411562260ee3f4fd5e875f410002341104
RHODF-4.15-RHEL-9	Red Hat	< 778302ca09498b448620edd372dc908bebf80bdf
RHODF-4.15-RHEL-9	Red Hat	< ffe54289b02e9c732d6f04c8ebbe3b2d90d32118
RHODF-4.15-RHEL-9	Red Hat	< 6550bdf52846f85a2a3726a5aa0c7c4399f2fc02
RHODF-4.15-RHEL-9	Red Hat	< 61cc70d9e8ef5b042d4ed87994d20100ec8896d9
RHODF-4.15-RHEL-9	Red Hat	458697ab18b512445ac273ce68a9f8fd623fc0a3
RHODF-4.15-RHEL-9	Red Hat	1aa698b65186c13ed775896ed1dfec7c26c73d60
RHODF-4.15-RHEL-9	Red Hat	52ef74c21c277e50de771fc722d814a830b3036b
RHODF-4.15-RHEL-9	Red Hat	4.19
RHODF-4.15-RHEL-9	Red Hat	< 4.19
RHODF-4.15-RHEL-9	Red Hat	<= 4.9.*
RHODF-4.15-RHEL-9	Red Hat	<= 4.14.*
RHODF-4.15-RHEL-9	Red Hat	<= 4.19.*
RHODF-4.15-RHEL-9	Red Hat	<= 5.4.*
RHODF-4.15-RHEL-9	Red Hat	<= 5.10.*
RHODF-4.15-RHEL-9	Red Hat	<= 5.15.*
RHODF-4.15-RHEL-9	Red Hat	<= 5.16.*
RHODF-4.15-RHEL-9	Red Hat	<= *
RHOL-5.8-RHEL-9	Red Hat	< b5dca2cd3f0239512da808598b4e70557eb4c2a1
RHOL-5.8-RHEL-9	Red Hat	<= 1.0.3
RHOL-5.8-RHEL-9	Red Hat	< d7e30dfc166d33470bba31a42f9bbc346e5409d5
RHOL-5.8-RHEL-9	Red Hat	< 9d5e96cc1f1720019ce27b127a31695148d38bb0
RHOL-5.8-RHEL-9	Red Hat	< 2.6.0
RHOL-5.8-RHEL-9	Red Hat	< b8ce58ab80faaea015c206382041ff3bcf5495ff
RHOL-5.8-RHEL-9	Red Hat	< 769ec2a824deae2f1268dfda14999a4d14d0d0c5
RHOL-5.8-RHEL-9	Red Hat	< 3.6.2
RHOL-5.8-RHEL-9	Red Hat	< 6ad81ad0cf5744738ce94c8e64051ddd80a1734c
RHOL-5.8-RHEL-9	Red Hat	<= 2024.1
RHOL-5.8-RHEL-9	Red Hat	< 9ad1981fc4de3afb7db3e8eb5a6a52d4c7d0d577
RHOL-5.8-RHEL-9	Red Hat	< 98e55b0b876bde3353f4e074883d66ecb55c65a3
RHOL-5.8-RHEL-9	Red Hat	< 746285cf81dc19502ab238249d75f5990bd2d231
RHOL-5.8-RHEL-9	Red Hat	3.15
RHOL-5.8-RHEL-9	Red Hat	< 3.15
RHOL-5.8-RHEL-9	Red Hat	<= 4.9.*
RHOL-5.8-RHEL-9	Red Hat	<= 4.14.*
RHOL-5.8-RHEL-9	Red Hat	<= 4.19.*
RHOL-5.8-RHEL-9	Red Hat	<= 5.4.*
RHOL-5.8-RHEL-9	Red Hat	<= 5.10.*
RHOL-5.8-RHEL-9	Red Hat	<= 5.15.*

Gnutls: incomplete fix for cve-2023-5981

Metrics

Opam packages affected (5)

Products affected (44)

References (54)