lp:ubuntu/+source/gnutls26

Get this repository:
git clone https://git.launchpad.net/ubuntu/+source/gnutls26
Members of Ubuntu Server Dev import team can upload to this repository. Log in for directions.

Branches

Name Last Modified Last Commit
ubuntu/natty-security 2012-04-05 22:05:16 UTC 2012-04-05
Import patches-unapplied version 2.8.6-1ubuntu2.1 to ubuntu/natty-security

Author: Tyler Hicks
Author Date: 2012-04-04 16:13:02 UTC

Import patches-unapplied version 2.8.6-1ubuntu2.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: b3101e9fab6637e897619e9c468b5fee6a298c86

New changelog entries:
  * SECURITY UPDATE: Denial of service in client application
    - debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
      session data. Based on upstream patch.
    - CVE-2011-4128
  * SECURITY UPDATE: Denial of service via crafted TLS record
    - debian/patches/CVE-2012-1573.patch: Validate the size of a
      GenericBlockCipher structure as it is processed. Based on upstream
      patch.
    - CVE-2012-1573

ubuntu/natty-updates 2012-04-05 22:05:16 UTC 2012-04-05
Import patches-unapplied version 2.8.6-1ubuntu2.1 to ubuntu/natty-security

Author: Tyler Hicks
Author Date: 2012-04-04 16:13:02 UTC

Import patches-unapplied version 2.8.6-1ubuntu2.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: b3101e9fab6637e897619e9c468b5fee6a298c86

New changelog entries:
  * SECURITY UPDATE: Denial of service in client application
    - debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
      session data. Based on upstream patch.
    - CVE-2011-4128
  * SECURITY UPDATE: Denial of service via crafted TLS record
    - debian/patches/CVE-2012-1573.patch: Validate the size of a
      GenericBlockCipher structure as it is processed. Based on upstream
      patch.
    - CVE-2012-1573

applied/ubuntu/maverick-devel 2012-04-05 22:05:16 UTC 2012-04-05
Import patches-applied version 2.8.6-1ubuntu0.1 to applied/ubuntu/maverick-se...

Author: Tyler Hicks
Author Date: 2012-04-04 16:13:02 UTC

Import patches-applied version 2.8.6-1ubuntu0.1 to applied/ubuntu/maverick-security

Imported using git-ubuntu import.

Changelog parent: 2860b567713cbcae9d661385bdd8a366af694f56
Unapplied parent: 49d917b72f3da0a3c78f105d9c106c819d813c97

New changelog entries:
  * SECURITY UPDATE: Denial of service in client application
    - debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
      session data. Based on upstream patch.
    - CVE-2011-4128
  * SECURITY UPDATE: Denial of service via crafted TLS record
    - debian/patches/CVE-2012-1573.patch: Validate the size of a
      GenericBlockCipher structure as it is processed. Based on upstream
      patch.
    - CVE-2012-1573

applied/ubuntu/natty-updates 2012-04-05 22:05:16 UTC 2012-04-05
Import patches-applied version 2.8.6-1ubuntu2.1 to applied/ubuntu/natty-security

Author: Tyler Hicks
Author Date: 2012-04-04 16:13:02 UTC

Import patches-applied version 2.8.6-1ubuntu2.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: e22490a6c0a02378bf6d2a9395227a80964b63aa
Unapplied parent: b8aaeadf35e30dc43eb3943daa08ee4c5fd69d35

New changelog entries:
  * SECURITY UPDATE: Denial of service in client application
    - debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
      session data. Based on upstream patch.
    - CVE-2011-4128
  * SECURITY UPDATE: Denial of service via crafted TLS record
    - debian/patches/CVE-2012-1573.patch: Validate the size of a
      GenericBlockCipher structure as it is processed. Based on upstream
      patch.
    - CVE-2012-1573

applied/ubuntu/natty-devel 2012-04-05 22:05:16 UTC 2012-04-05
Import patches-applied version 2.8.6-1ubuntu2.1 to applied/ubuntu/natty-security

Author: Tyler Hicks
Author Date: 2012-04-04 16:13:02 UTC

Import patches-applied version 2.8.6-1ubuntu2.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: e22490a6c0a02378bf6d2a9395227a80964b63aa
Unapplied parent: b8aaeadf35e30dc43eb3943daa08ee4c5fd69d35

New changelog entries:
  * SECURITY UPDATE: Denial of service in client application
    - debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
      session data. Based on upstream patch.
    - CVE-2011-4128
  * SECURITY UPDATE: Denial of service via crafted TLS record
    - debian/patches/CVE-2012-1573.patch: Validate the size of a
      GenericBlockCipher structure as it is processed. Based on upstream
      patch.
    - CVE-2012-1573

applied/ubuntu/maverick-updates 2012-04-05 22:05:16 UTC 2012-04-05
Import patches-applied version 2.8.6-1ubuntu0.1 to applied/ubuntu/maverick-se...

Author: Tyler Hicks
Author Date: 2012-04-04 16:13:02 UTC

Import patches-applied version 2.8.6-1ubuntu0.1 to applied/ubuntu/maverick-security

Imported using git-ubuntu import.

Changelog parent: 2860b567713cbcae9d661385bdd8a366af694f56
Unapplied parent: 49d917b72f3da0a3c78f105d9c106c819d813c97

New changelog entries:
  * SECURITY UPDATE: Denial of service in client application
    - debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
      session data. Based on upstream patch.
    - CVE-2011-4128
  * SECURITY UPDATE: Denial of service via crafted TLS record
    - debian/patches/CVE-2012-1573.patch: Validate the size of a
      GenericBlockCipher structure as it is processed. Based on upstream
      patch.
    - CVE-2012-1573

ubuntu/oneiric 2011-08-25 17:04:31 UTC 2011-08-25
Import patches-unapplied version 2.10.5-1ubuntu3 to ubuntu/oneiric

Author: Colin Watson
Author Date: 2011-08-25 16:23:22 UTC

Import patches-unapplied version 2.10.5-1ubuntu3 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 775f731b5f9aa01ce6f7785ae1c4d0ace83cabee

New changelog entries:
  * Backport from Debian (Andreas Metzler, LP: #829467):
    - [20_gcrypt15compat.diff] Fix compatibility with gcrypt 1.5.

applied/ubuntu/oneiric 2011-08-25 17:04:31 UTC 2011-08-25
Import patches-applied version 2.10.5-1ubuntu3 to applied/ubuntu/oneiric

Author: Colin Watson
Author Date: 2011-08-25 16:23:22 UTC

Import patches-applied version 2.10.5-1ubuntu3 to applied/ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 60eb1f09bc77c2d632ca466d69eb3475d8f57929
Unapplied parent: 4ae54ef09de1b24131f770a3cfc5f7793649538c

New changelog entries:
  * Backport from Debian (Andreas Metzler, LP: #829467):
    - [20_gcrypt15compat.diff] Fix compatibility with gcrypt 1.5.

applied/ubuntu/natty 2011-03-22 06:05:55 UTC 2011-03-22
Import patches-applied version 2.8.6-1ubuntu2 to applied/ubuntu/natty

Author: Steve Langasek
Author Date: 2011-03-22 05:19:18 UTC

Import patches-applied version 2.8.6-1ubuntu2 to applied/ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 09f11e1e2ebe0993bdfbc857207618025a9680a1
Unapplied parent: 89fd6316ee897ec89f0b4409933cb6665d35de4d

New changelog entries:
  * FFe LP: #733501: Build for multiarch.

ubuntu/natty 2011-03-22 06:05:55 UTC 2011-03-22
Import patches-unapplied version 2.8.6-1ubuntu2 to ubuntu/natty

Author: Steve Langasek
Author Date: 2011-03-22 05:19:18 UTC

Import patches-unapplied version 2.8.6-1ubuntu2 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: d83658e73cad482cf5a950179cc07c63c96caccd

New changelog entries:
  * FFe LP: #733501: Build for multiarch.

ubuntu/maverick 2010-03-21 03:16:53 UTC 2010-03-21
Import patches-unapplied version 2.8.6-1 to debian/sid

Author: Andreas Metzler
Author Date: 2010-03-20 14:53:35 UTC

Import patches-unapplied version 2.8.6-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: addd175efeafd97c4279b3220373f1d9fd753bf8

New changelog entries:
  * Use dh_lintian.
  * Use dh_makeshlibs for the guile stuff, too. This gets us
    a) ldconfig in postinst. Closes: #553109
    and
    b) a shlibs file.
    However the shared objects /usr/lib/libguile-gnutls*so* are still not
    designed to be used as libraries (linking) but are dlopened. guile-1.10
    will address this issue by keeping this stuff in a private directory.
  * hotfix pkg-config files (proper fix to be included upstream).
  * Stop unneeeded linkage against libgpg-error. 16_unnecessarydep.diff

applied/ubuntu/maverick 2010-03-21 03:16:53 UTC 2010-03-21
Import patches-applied version 2.8.6-1 to applied/debian/sid

Author: Andreas Metzler
Author Date: 2010-03-20 14:53:35 UTC

Import patches-applied version 2.8.6-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 9a256feff2ee41dca6eb040d43bf3359b1fa388e
Unapplied parent: 4b582c0e5ca416eac96d8e025b6b44a5efb617ba

New changelog entries:
  * Use dh_lintian.
  * Use dh_makeshlibs for the guile stuff, too. This gets us
    a) ldconfig in postinst. Closes: #553109
    and
    b) a shlibs file.
    However the shared objects /usr/lib/libguile-gnutls*so* are still not
    designed to be used as libraries (linking) but are dlopened. guile-1.10
    will address this issue by keeping this stuff in a private directory.
  * hotfix pkg-config files (proper fix to be included upstream).
  * Stop unneeeded linkage against libgpg-error. 16_unnecessarydep.diff

debian/lenny 2010-01-30 15:07:10 UTC 2010-01-30
Import patches-unapplied version 2.4.2-6+lenny2 to debian/lenny

Author: Giuseppe Iuculano
Author Date: 2009-11-01 20:29:06 UTC

Import patches-unapplied version 2.4.2-6+lenny2 to debian/lenny

Imported using git-ubuntu import.

Changelog parent: 02a21dec3e9d6033220560f0c8893b270af5d55b

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fixed CVE-2009-2730: a vulnerability related to NUL bytes in X.509
    certificate name fields. (Closes: #541439) GNUTLS-SA-2009-4

applied/debian/lenny 2010-01-30 15:07:10 UTC 2010-01-30
Import patches-applied version 2.4.2-6+lenny2 to applied/debian/lenny

Author: Giuseppe Iuculano
Author Date: 2009-11-01 20:29:06 UTC

Import patches-applied version 2.4.2-6+lenny2 to applied/debian/lenny

Imported using git-ubuntu import.

Changelog parent: 624ce0ff3fb84ba3e1d4a47f1781793ce81eaacd
Unapplied parent: d8b772e532f53ce66147179460c0d4c2a4daa4c3

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fixed CVE-2009-2730: a vulnerability related to NUL bytes in X.509
    certificate name fields. (Closes: #541439) GNUTLS-SA-2009-4

ubuntu/lucid 2009-12-21 10:23:36 UTC 2009-12-21
Import patches-unapplied version 2.8.5-2 to debian/squeeze

Author: Andreas Metzler
Author Date: 2009-11-13 18:53:04 UTC

Import patches-unapplied version 2.8.5-2 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 3ea93765b1ef302a17c8c8c9d986f29cd94689e7

New changelog entries:
  * Add a huge bunch of lintian overrides for the guile stuff to make dak
    happy.
  * Add datefudge to build-depends. (Only needed for the pkcs1-pad test.)
  * Switch to '3.0 (quilt)' source format, allowing us to use upstreams
    orig.tar.bz2 without repacking it to gz.
  * New upstream version.
    + Drop patches/20_fixtimebomb.diff.

applied/ubuntu/lucid 2009-12-21 10:23:36 UTC 2009-12-21
Import patches-applied version 2.8.5-2 to applied/debian/squeeze

Author: Andreas Metzler
Author Date: 2009-11-13 18:53:04 UTC

Import patches-applied version 2.8.5-2 to applied/debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 7d2852e367055c04e831f95dfe1696d980f47f12
Unapplied parent: 3a2c9b4586be91290351425e7beae4f0f3f22781

New changelog entries:
  * Add a huge bunch of lintian overrides for the guile stuff to make dak
    happy.
  * Add datefudge to build-depends. (Only needed for the pkcs1-pad test.)
  * Switch to '3.0 (quilt)' source format, allowing us to use upstreams
    orig.tar.bz2 without repacking it to gz.
  * New upstream version.
    + Drop patches/20_fixtimebomb.diff.

applied/ubuntu/karmic-devel 2009-08-23 01:14:43 UTC 2009-08-23
Import patches-applied version 2.8.3-2 to applied/debian/sid

Author: Andreas Metzler
Author Date: 2009-08-22 12:14:48 UTC

Import patches-applied version 2.8.3-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: e5cd024137473c60f7848026e513611d1be610e8
Unapplied parent: bd4dcbca3a7d045b77287b6175f0cf67ba890944

New changelog entries:
  * [ debian/patches/15_openpgp.diff ] The CVE-2009-2730 patch broke
    openpgp connections.

ubuntu/karmic 2009-08-23 01:14:43 UTC 2009-08-23
Import patches-unapplied version 2.8.3-2 to debian/sid

Author: Andreas Metzler
Author Date: 2009-08-22 12:14:48 UTC

Import patches-unapplied version 2.8.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 85698c80bd630b92c170485b3829499fba7f61c9

New changelog entries:
  * [ debian/patches/15_openpgp.diff ] The CVE-2009-2730 patch broke
    openpgp connections.

applied/ubuntu/karmic 2009-08-23 01:14:43 UTC 2009-08-23
Import patches-applied version 2.8.3-2 to applied/debian/sid

Author: Andreas Metzler
Author Date: 2009-08-22 12:14:48 UTC

Import patches-applied version 2.8.3-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: e5cd024137473c60f7848026e513611d1be610e8
Unapplied parent: bd4dcbca3a7d045b77287b6175f0cf67ba890944

New changelog entries:
  * [ debian/patches/15_openpgp.diff ] The CVE-2009-2730 patch broke
    openpgp connections.

ubuntu/karmic-devel 2009-08-23 01:14:43 UTC 2009-08-23
Import patches-unapplied version 2.8.3-2 to debian/sid

Author: Andreas Metzler
Author Date: 2009-08-22 12:14:48 UTC

Import patches-unapplied version 2.8.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 85698c80bd630b92c170485b3829499fba7f61c9

New changelog entries:
  * [ debian/patches/15_openpgp.diff ] The CVE-2009-2730 patch broke
    openpgp connections.

ubuntu/jaunty-security 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Author: Jamie Strandboge
Author Date: 2009-08-14 19:01:09 UTC

Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: ebf14c864ad8894a1fcef108ef5501f02031fca3

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ubuntu/intrepid-updates 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-unapplied version 2.4.1-1ubuntu0.4 to ubuntu/intrepid-security

Author: Jamie Strandboge
Author Date: 2009-08-14 19:03:56 UTC

Import patches-unapplied version 2.4.1-1ubuntu0.4 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: f66e8af631d4c62be1b180200c7f7eebdfda8b9e

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/21_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ubuntu/intrepid-security 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-unapplied version 2.4.1-1ubuntu0.4 to ubuntu/intrepid-security

Author: Jamie Strandboge
Author Date: 2009-08-14 19:03:56 UTC

Import patches-unapplied version 2.4.1-1ubuntu0.4 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: f66e8af631d4c62be1b180200c7f7eebdfda8b9e

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/21_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

applied/ubuntu/intrepid-devel 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-applied version 2.4.1-1ubuntu0.4 to applied/ubuntu/intrepid-se...

Author: Jamie Strandboge
Author Date: 2009-08-14 19:03:56 UTC

Import patches-applied version 2.4.1-1ubuntu0.4 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: ce5ea7845c3b01de25c1cb980218a65f474732b1
Unapplied parent: 76fe9998afa447dd93601ccb2301953631aa32ce

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/21_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ubuntu/intrepid-devel 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-unapplied version 2.4.1-1ubuntu0.4 to ubuntu/intrepid-security

Author: Jamie Strandboge
Author Date: 2009-08-14 19:03:56 UTC

Import patches-unapplied version 2.4.1-1ubuntu0.4 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: f66e8af631d4c62be1b180200c7f7eebdfda8b9e

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/21_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

applied/ubuntu/jaunty-security 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-secu...

Author: Jamie Strandboge
Author Date: 2009-08-14 19:01:09 UTC

Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: e3e5e107260bb81ed1f0c813bf342f3950b3d842
Unapplied parent: ac87ad3e8e296622cd970d6b5137404e4cb1f644

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

applied/ubuntu/jaunty-devel 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-secu...

Author: Jamie Strandboge
Author Date: 2009-08-14 19:01:09 UTC

Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: e3e5e107260bb81ed1f0c813bf342f3950b3d842
Unapplied parent: ac87ad3e8e296622cd970d6b5137404e4cb1f644

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

applied/ubuntu/intrepid-updates 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-applied version 2.4.1-1ubuntu0.4 to applied/ubuntu/intrepid-se...

Author: Jamie Strandboge
Author Date: 2009-08-14 19:03:56 UTC

Import patches-applied version 2.4.1-1ubuntu0.4 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: ce5ea7845c3b01de25c1cb980218a65f474732b1
Unapplied parent: 76fe9998afa447dd93601ccb2301953631aa32ce

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/21_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

applied/ubuntu/intrepid-security 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-applied version 2.4.1-1ubuntu0.4 to applied/ubuntu/intrepid-se...

Author: Jamie Strandboge
Author Date: 2009-08-14 19:03:56 UTC

Import patches-applied version 2.4.1-1ubuntu0.4 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: ce5ea7845c3b01de25c1cb980218a65f474732b1
Unapplied parent: 76fe9998afa447dd93601ccb2301953631aa32ce

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/21_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ubuntu/jaunty-devel 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Author: Jamie Strandboge
Author Date: 2009-08-14 19:01:09 UTC

Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: ebf14c864ad8894a1fcef108ef5501f02031fca3

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ubuntu/jaunty-updates 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Author: Jamie Strandboge
Author Date: 2009-08-14 19:01:09 UTC

Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: ebf14c864ad8894a1fcef108ef5501f02031fca3

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

applied/ubuntu/jaunty-updates 2009-08-19 22:05:12 UTC 2009-08-19
Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-secu...

Author: Jamie Strandboge
Author Date: 2009-08-14 19:01:09 UTC

Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: e3e5e107260bb81ed1f0c813bf342f3950b3d842
Unapplied parent: ac87ad3e8e296622cd970d6b5137404e4cb1f644

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ubuntu/intrepid-proposed 2009-02-21 13:04:56 UTC 2009-02-21
Import patches-unapplied version 2.4.1-1ubuntu0.3 to ubuntu/intrepid-proposed

Author: Jamie Strandboge
Author Date: 2009-02-20 18:24:43 UTC

Import patches-unapplied version 2.4.1-1ubuntu0.3 to ubuntu/intrepid-proposed

Imported using git-ubuntu import.

Changelog parent: 31b2d8586606d9084f15f86a8d899ae602f41fcc

New changelog entries:
  * Fix for certificate chain regressions introduced by fixes for
    CVE-2008-4989
  * debian/patches/20_CVE-2008-4989.diff: updated to upstream's final
    2.4.2 - 2.4.3 patchset for lib/x509/verify.c to fix CVE-2008-4989 and
    address all known regressions. To summarize from upstream:
    - Fix X.509 certificate chain validation error (CVE-2008-4989)
    - Fix chain verification for chains that end with RSA-MD2 CAs (LP: #305264)
    - Deprecate X.509 validation chains using MD5 and MD2 signatures
    - Accept chains where intermediary certs are trusted (LP: #305264)

applied/ubuntu/intrepid-proposed 2009-02-21 13:04:56 UTC 2009-02-21
Import patches-applied version 2.4.1-1ubuntu0.3 to applied/ubuntu/intrepid-pr...

Author: Jamie Strandboge
Author Date: 2009-02-20 18:24:43 UTC

Import patches-applied version 2.4.1-1ubuntu0.3 to applied/ubuntu/intrepid-proposed

Imported using git-ubuntu import.

Changelog parent: 028255ab9a0e5935945662ee53dbd9948ddb1c43
Unapplied parent: f66e8af631d4c62be1b180200c7f7eebdfda8b9e

New changelog entries:
  * Fix for certificate chain regressions introduced by fixes for
    CVE-2008-4989
  * debian/patches/20_CVE-2008-4989.diff: updated to upstream's final
    2.4.2 - 2.4.3 patchset for lib/x509/verify.c to fix CVE-2008-4989 and
    address all known regressions. To summarize from upstream:
    - Fix X.509 certificate chain validation error (CVE-2008-4989)
    - Fix chain verification for chains that end with RSA-MD2 CAs (LP: #305264)
    - Deprecate X.509 validation chains using MD5 and MD2 signatures
    - Accept chains where intermediary certs are trusted (LP: #305264)

applied/ubuntu/jaunty 2009-02-08 02:10:24 UTC 2009-02-08
Import patches-applied version 2.4.2-6 to applied/debian/sid

Author: Andreas Metzler
Author Date: 2009-02-07 11:58:51 UTC

Import patches-applied version 2.4.2-6 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: fea23fa894539bb064d03d6f7b734584f6a1f3f3
Unapplied parent: ebf14c864ad8894a1fcef108ef5501f02031fca3

New changelog entries:
  * New patches, syncing with 2.4.3 upstream oldstable release:
    + 24_intermedcertificate.patch If a non-root certificate ist trusted
      gnutls certificateificate verification stops there instead of checking
      up to the root of the certificate chain.
    + 22_whitespace.patch - Whitespace only changes, to make it possible to
      apply upstream fixes without manual changes.
    + 25_bufferoverrun.patch. Fix buffer overrun bug in
      gnutls_x509_crt_list_import.
      http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e

ubuntu/jaunty 2009-02-08 02:10:24 UTC 2009-02-08
Import patches-unapplied version 2.4.2-6 to debian/sid

Author: Andreas Metzler
Author Date: 2009-02-07 11:58:51 UTC

Import patches-unapplied version 2.4.2-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ace2dc3df0150bbc8b0dd42b087db10a65ab5d54

New changelog entries:
  * New patches, syncing with 2.4.3 upstream oldstable release:
    + 24_intermedcertificate.patch If a non-root certificate ist trusted
      gnutls certificateificate verification stops there instead of checking
      up to the root of the certificate chain.
    + 22_whitespace.patch - Whitespace only changes, to make it possible to
      apply upstream fixes without manual changes.
    + 25_bufferoverrun.patch. Fix buffer overrun bug in
      gnutls_x509_crt_list_import.
      http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e

ubuntu/intrepid 2008-08-06 19:13:06 UTC 2008-08-06
Import patches-unapplied version 2.4.1-1build1 to ubuntu/intrepid

Author: Martin Pitt
Author Date: 2008-08-06 14:18:59 UTC

Import patches-unapplied version 2.4.1-1build1 to ubuntu/intrepid

Imported using git-ubuntu import.

Changelog parent: 6ff7d79365d6491a13463bc82183d417eae63830

New changelog entries:
  * Rebuild against thread-enabled guile-1.8.

applied/ubuntu/intrepid 2008-08-06 19:13:06 UTC 2008-08-06
Import patches-applied version 2.4.1-1build1 to applied/ubuntu/intrepid

Author: Martin Pitt
Author Date: 2008-08-06 14:18:59 UTC

Import patches-applied version 2.4.1-1build1 to applied/ubuntu/intrepid

Imported using git-ubuntu import.

Changelog parent: ba589bf15ef9356c01b72afe997137db5e225bf3
Unapplied parent: cd25621cb80510592ba91bf52847b005f8e36eb2

New changelog entries:
  * Rebuild against thread-enabled guile-1.8.

101138 of 138 results
This repository contains Public information 
Everyone can see this information.