lp:ubuntu/utopic/gnutls26
- Get this branch:
- bzr branch lp:ubuntu/utopic/gnutls26
Branch merges
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 46. By Marc Deslauriers
-
* SECURITY UPDATE: memory corruption due to server hello parsing
- debian/patches/ CVE-2014- 3466.patch: validate session_id_len in
lib/gnutls_ handshake. c.
- CVE-2014-3466 - 45. By Dimitri John Ledkov
-
* Merge with Debian; remaining changes:
- Drop the sipsak Breaks on armhf back to (<= 0.9.6-2.1), which is
sufficient for Ubuntu. The former versioning rendered sipsak
uninstallable.
- Link test-lock and test-thread_create with -Wl,--no-as-needed; see
https://lists. gnu.org/ archive/ html/bug- gnulib/ 2013-10/ msg00017. html.
- debian/patches/ 99_update- libtool. patch: Update libtool.m4
- debian/rules: Set CC on cross-builds, so autoconf doesn't lose its mind.* Dropped changes:
- gnutls-bin is now going to be build from gnutls28 package, as it is
now GPLv2 compatible.
- security upload, included in debian. - 44. By Marc Deslauriers
-
* SECURITY UPDATE: certificate validation bypass
- debian/patches/ CVE-2014- 0092.patch: correct return codes in
lib/x509/verify. c.
- CVE-2014-0092 - 43. By Matthias Klose
-
* Merge with Debian; remaining changes:
- Build gnutls-bin from this source package rather than from gnutls28:
gnutls28's licensing is currently too strict for many of the free
software packages built against it in Ubuntu main and we only want to
support a single version. Bump its version to achieve this.
- Drop the sipsak Breaks on armhf back to (<= 0.9.6-2.1), which is
sufficient for Ubuntu. The former versioning rendered sipsak
uninstallable.
- Link test-lock and test-thread_create with -Wl,--no-as-needed; see
https://lists. gnu.org/ archive/ html/bug- gnulib/ 2013-10/ msg00017. html.
- debian/patches/ 99_update- libtool. patch: Update libtool.m4
- debian/rules: Set CC on cross-builds, so autoconf doesn't lose its mind. - 42. By Marc Deslauriers
-
* SECURITY UPDATE: incorrect v1 intermediate cert handling
- debian/patches/ CVE-2014- 1959.patch: don't consider a v1 intermediate
cert to be a valid CA by default in lib/x509/verify.c.
- CVE-2014-1959 - 41. By Adam Conrad
-
* 25_updatedgdocf
rommaster. diff - Update gdoc script from gnutls master to
fix spurious build failure with perl 5.18. Closes: #724167
* debian/patches/ 99_update- libtool. patch: Update libtool.m4
* debian/rules: Set CC on cross-builds, so autoconf doesn't lose its mind. - 40. By Colin Watson
-
Link test-lock and test-thread_create with -Wl,--no-as-needed; see
https://lists. gnu.org/ archive/ html/bug- gnulib/ 2013-10/ msg00017. html.
Based on a similar change by Matthias Klose in libidn. - 39. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via incorrect pad
- debian/patches/ CVE-2013- 2116.patch: added sanity check in
lib/gnutls_ cipher. c.
- CVE-2013-2116 - 38. By Timo Aaltonen
-
* Merge from debian-
experimental, remaining changes:
- Build gnutls-bin from this source package rather than from gnutls28:
gnutls28's licensing is currently too strict for many of the free
software packages built against it in Ubuntu main and we only want to
support a single version. Bump its version to achieve this.
* Drop gnulib-gets.diff: upstream. - 37. By Colin Watson
-
* Resynchronise with Debian. Remaining changes:
- Build gnutls-bin from this source package rather than from gnutls28:
gnutls28's licensing is currently too strict for many of the free
software packages built against it in Ubuntu main and we only want to
support a single version. Bump its version to achieve this.
* Avoid assuming that gets is declared.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/trusty/gnutls26