[Pkg-gnutls-commits] r672 - in /packages/gnutls26/branches/branch2.5.x/debian: ./ patches/
ametzler at users.alioth.debian.org
ametzler at users.alioth.debian.org
Sun Feb 15 16:45:35 UTC 2009
Author: ametzler
Date: Sun Feb 15 16:45:35 2009
New Revision: 672
URL: http://svn.debian.org/wsvn/pkg-gnutls/?sc=1&rev=672
Log:
Merge from trunk, part II
Added:
packages/gnutls26/branches/branch2.5.x/debian/patches/20_GNUTLS-SA-2008-3.patch
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/20_GNUTLS-SA-2008-3.patch
packages/gnutls26/branches/branch2.5.x/debian/patches/21_GNUTLS-SA-2008-3.fix.patch
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/21_GNUTLS-SA-2008-3.fix.patch
packages/gnutls26/branches/branch2.5.x/debian/patches/22_deprecate_md2_md5_x509_validation.diff
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/22_deprecate_md2_md5_x509_validation.diff
packages/gnutls26/branches/branch2.5.x/debian/patches/22_whitespace.patch
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/22_whitespace.patch
packages/gnutls26/branches/branch2.5.x/debian/patches/23_permit_v1_CA.diff
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/23_permit_v1_CA.diff
packages/gnutls26/branches/branch2.5.x/debian/patches/24_intermedcert.patch
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/24_intermedcert.patch
packages/gnutls26/branches/branch2.5.x/debian/patches/25_bufferoverrun.patch
- copied unchanged from r671, packages/gnutls26/trunk/debian/patches/25_bufferoverrun.patch
Modified:
packages/gnutls26/branches/branch2.5.x/debian/changelog
Modified: packages/gnutls26/branches/branch2.5.x/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnutls/packages/gnutls26/branches/branch2.5.x/debian/changelog?rev=672&op=diff
==============================================================================
--- packages/gnutls26/branches/branch2.5.x/debian/changelog (original)
+++ packages/gnutls26/branches/branch2.5.x/debian/changelog Sun Feb 15 16:45:35 2009
@@ -53,6 +53,55 @@
* Bump shlibs.
-- Andreas Metzler <ametzler at debian.org> Sat, 04 Oct 2008 12:40:01 +0200
+
+gnutls26 (2.4.2-6) unstable; urgency=medium
+
+ * New patches, syncing with 2.4.3 upstream oldstable release:
+ + 24_intermedcertificate.patch If a non-root certificate ist trusted
+ gnutls certificateificate verification stops there instead of checking
+ up to the root of the certificate chain.
+ + 22_whitespace.patch - Whitespace only changes, to make it possible to
+ apply upstream fixes without manual changes.
+ + 25_bufferoverrun.patch. Fix buffer overrun bug in
+ gnutls_x509_crt_list_import.
+ http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e
+
+ -- Andreas Metzler <ametzler at debian.org> Sat, 07 Feb 2009 12:58:51 +0100
+
+gnutls26 (2.4.2-5) unstable; urgency=low
+
+ * Pull two patches from upstream stable branch to make gnutls behavior
+ match documentation:
+ + patch 23_permit_v1_CA.diff:Accept v1 x509 CA
+ certs if GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
+ GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Closes: #509593
+ + 22_deprecate_md2_md5_x509_validation.diff: Verifying untrusted X.509
+ certificates signed with RSA-MD2 or RSA-MD5 will now fail with a
+ GNUTLS_CERT_INSECURE_ALGORITHM verification output.
+
+ -- Andreas Metzler <ametzler at debian.org> Sat, 31 Jan 2009 16:26:52 +0100
+
+gnutls26 (2.4.2-4) unstable; urgency=medium
+
+ * Add Simon Josefsson to uploaders.
+ * Another fix for the verification fix. Some correct certificate chains were
+ not recognized as verified. Closes: #507633
+
+ -- Andreas Metzler <ametzler at debian.org> Sat, 06 Dec 2008 12:09:33 +0100
+
+gnutls26 (2.4.2-3) unstable; urgency=low
+
+ * Fix a crash on trying to verify self-signed certificates introduced by the
+ patch for CVE-2008-4989. Closes: #505279
+
+ -- Andreas Metzler <ametzler at debian.org> Wed, 12 Nov 2008 19:23:23 +0100
+
+gnutls26 (2.4.2-2) unstable; urgency=medium
+
+ * [CVE-2008-4989.diff] Fix man in the middle attack for certificate
+ verification. CVE-2008-4989 GNUTLS-SA-2008-3
+
+ -- Andreas Metzler <ametzler at debian.org> Mon, 10 Nov 2008 19:42:54 +0100
gnutls26 (2.4.2-1) unstable; urgency=low
More information about the Pkg-gnutls-commits
mailing list