VDB
RHSA-2010%3A0166
RHSA-2010%3A0166
PUBLISHED
Updated gnutls packages that fix two security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux Desktop (v. 5 client) | ||
| Red Hat Enterprise Linux (v. 5 server) | ||
| gnutls | ||
| Red Hat Enterprise Linux Desktop Workstation (v. 5 client) |
Exploit Intelligence
- A TLS server using a vendored fork of the Go TLS stack that has renegotation indication extension forcibly disabled. (github-poc)
- https://access.redhat.com/errata/RHSA-2010:0166 (circl)
- https://access.redhat.com/security/updates/classification/#moderate (circl)
- http://kbase.redhat.com/faq/docs/DOC-20491 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=510197 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=533125 (circl)
- https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0166.json (circl)
Timeline
- Mar 25, 2010 CVE Published
- Jan 28, 2026 CVE Updated
- Apr 12, 2026 Distribution Patch
- Apr 12, 2026 Distribution Patch
- Apr 12, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2010:0166 advisory
- https://access.redhat.com/security/updates/classification/#moderate url
- http://kbase.redhat.com/faq/docs/DOC-20491 url
- https://bugzilla.redhat.com/show_bug.cgi?id=510197 url
- https://bugzilla.redhat.com/show_bug.cgi?id=533125 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0166.json advisory