gnutls12 1.2.9-2ubuntu1.5 source package in Ubuntu
Changelog
gnutls12 (1.2.9-2ubuntu1.5) dapper-security; urgency=low
* Fix for certificate chain regressions introduced by fixes for
CVE-2008-4989
* debian/patches/20_CVE-2008-4989.diff: updated to upstream's final
2.4.2 - 2.4.3 patchset for lib/x509/verify.c to fix CVE-2008-4989 and
address all known regressions. To summarize from upstream:
- Fix X.509 certificate chain validation error (CVE-2008-4989)
- Fix chain verification for chains that end with RSA-MD2 CAs (LP: #305264)
- Deprecate X.509 validation chains using MD5 and MD2 signatures
- Accept chains where intermediary certs are trusted (LP: #305264)
-- Jamie Strandboge <email address hidden> Fri, 20 Feb 2009 13:47:47 -0600
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Dapper
- Original maintainer:
- Matthias Urlichs
- Architectures:
- any
- Section:
- devel
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| gnutls12_1.2.9.orig.tar.gz | 3.2 MiB | b0613f143b47f6811fbbc65d247dc10bf2c15f11e3904f20abc9254f24be11c1 |
| gnutls12_1.2.9-2ubuntu1.5.diff.gz | 545.3 KiB | fdbe8360d10224121ecc78c94e8801c8d668935868affcdd50498794337de3b6 |
| gnutls12_1.2.9-2ubuntu1.5.dsc | 826 bytes | d69c98348d4af760bc068fd08fdfb69958d246903c412aaedc8d144f3106f819 |
Available diffs
Binary packages built by this source
- gnutls-bin: No summary available for gnutls-bin in ubuntu dapper.
No description available for gnutls-bin in ubuntu dapper.
- libgnutls-dev: No summary available for libgnutls-dev in ubuntu dapper.
No description available for libgnutls-dev in ubuntu dapper.
- libgnutls12: No summary available for libgnutls12 in ubuntu dapper.
No description available for libgnutls12 in ubuntu dapper.
- libgnutls12-dbg: No summary available for libgnutls12-dbg in ubuntu dapper.
No description available for libgnutls12-dbg in ubuntu dapper.
