[Pkg-gnutls-commits] r672 - in /packages/gnutls26/branches/branch2.5.x/debian: ./ patches/

ametzler at users.alioth.debian.org ametzler at users.alioth.debian.org
Sun Feb 15 16:45:35 UTC 2009 

Author: ametzler
Date: Sun Feb 15 16:45:35 2009
New Revision: 672

URL: http://svn.debian.org/wsvn/pkg-gnutls/?sc=1&rev=672
Log:
Merge from trunk, part II

Added:
    packages/gnutls26/branches/branch2.5.x/debian/patches/20_GNUTLS-SA-2008-3.patch
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/20_GNUTLS-SA-2008-3.patch
    packages/gnutls26/branches/branch2.5.x/debian/patches/21_GNUTLS-SA-2008-3.fix.patch
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/21_GNUTLS-SA-2008-3.fix.patch
    packages/gnutls26/branches/branch2.5.x/debian/patches/22_deprecate_md2_md5_x509_validation.diff
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/22_deprecate_md2_md5_x509_validation.diff
    packages/gnutls26/branches/branch2.5.x/debian/patches/22_whitespace.patch
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/22_whitespace.patch
    packages/gnutls26/branches/branch2.5.x/debian/patches/23_permit_v1_CA.diff
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/23_permit_v1_CA.diff
    packages/gnutls26/branches/branch2.5.x/debian/patches/24_intermedcert.patch
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/24_intermedcert.patch
    packages/gnutls26/branches/branch2.5.x/debian/patches/25_bufferoverrun.patch
      - copied unchanged from r671, packages/gnutls26/trunk/debian/patches/25_bufferoverrun.patch
Modified:
    packages/gnutls26/branches/branch2.5.x/debian/changelog

Modified: packages/gnutls26/branches/branch2.5.x/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnutls/packages/gnutls26/branches/branch2.5.x/debian/changelog?rev=672&op=diff
==============================================================================
--- packages/gnutls26/branches/branch2.5.x/debian/changelog (original)
+++ packages/gnutls26/branches/branch2.5.x/debian/changelog Sun Feb 15 16:45:35 2009
@@ -53,6 +53,55 @@
   * Bump shlibs.
 
  -- Andreas Metzler <ametzler at debian.org>  Sat, 04 Oct 2008 12:40:01 +0200
+
+gnutls26 (2.4.2-6) unstable; urgency=medium
+
+  * New patches, syncing with 2.4.3 upstream oldstable release:
+    + 24_intermedcertificate.patch If a non-root certificate ist trusted
+      gnutls certificateificate verification stops there instead of checking
+      up to the root of the certificate chain.
+    + 22_whitespace.patch - Whitespace only changes, to make it possible to
+      apply upstream fixes without manual changes. 
+    + 25_bufferoverrun.patch. Fix buffer overrun bug in
+      gnutls_x509_crt_list_import.
+      http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e
+
+ -- Andreas Metzler <ametzler at debian.org>  Sat, 07 Feb 2009 12:58:51 +0100
+
+gnutls26 (2.4.2-5) unstable; urgency=low
+
+  * Pull two patches from upstream stable branch to make gnutls behavior
+    match documentation:
+   + patch 23_permit_v1_CA.diff:Accept v1 x509 CA
+     certs if GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
+     GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Closes: #509593
+   + 22_deprecate_md2_md5_x509_validation.diff: Verifying untrusted X.509
+     certificates signed with RSA-MD2 or RSA-MD5 will now fail with a
+     GNUTLS_CERT_INSECURE_ALGORITHM verification output.
+
+ -- Andreas Metzler <ametzler at debian.org>  Sat, 31 Jan 2009 16:26:52 +0100
+
+gnutls26 (2.4.2-4) unstable; urgency=medium
+
+  * Add Simon Josefsson to uploaders.
+  * Another fix for the verification fix. Some correct certificate chains were
+    not recognized as verified. Closes: #507633
+
+ -- Andreas Metzler <ametzler at debian.org>  Sat, 06 Dec 2008 12:09:33 +0100
+
+gnutls26 (2.4.2-3) unstable; urgency=low
+
+  * Fix a crash on trying to verify self-signed certificates introduced by the
+    patch for CVE-2008-4989. Closes: #505279
+
+ -- Andreas Metzler <ametzler at debian.org>  Wed, 12 Nov 2008 19:23:23 +0100
+
+gnutls26 (2.4.2-2) unstable; urgency=medium
+
+  * [CVE-2008-4989.diff] Fix man in the middle attack for certificate
+    verification. CVE-2008-4989 GNUTLS-SA-2008-3
+
+ -- Andreas Metzler <ametzler at debian.org>  Mon, 10 Nov 2008 19:42:54 +0100
 
 gnutls26 (2.4.2-1) unstable; urgency=low

More information about the Pkg-gnutls-commits mailing list