Ubuntu
gnutls26 package

ubuntu/+source/gnutls26:applied/ubuntu/jaunty-updates

  1. Git
  2. lp:ubuntu/+source/gnutls26
  3. applied/ubuntu/jaunty-updates
Last commit made on 2009-08-19
Get this branch:
git clone -b applied/ubuntu/jaunty-updates https://git.launchpad.net/ubuntu/+source/gnutls26
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/jaunty-updates
Repository:
lp:ubuntu/+source/gnutls26

Recent commits

7b54021... by Jamie Strandboge on 2009-08-14

Import patches-applied version 2.4.2-6ubuntu0.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: e3e5e107260bb81ed1f0c813bf342f3950b3d842
Unapplied parent: ac87ad3e8e296622cd970d6b5137404e4cb1f644

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

ac87ad3... by Jamie Strandboge on 2009-08-14

Import patches-unapplied version 2.4.2-6ubuntu0.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: ebf14c864ad8894a1fcef108ef5501f02031fca3

New changelog entries:
  * SECURITY UPDATE: fix improper handling of '\0' in Common Name (CN) and
    Subject Alternative Name (SAN) in X.509 certificates (LP: #413136)
    - debian/patches/26_CVE-2009-2730.diff: verify length of CN and SAN
      are what we expect and error out if either contains an embedded \0
    - CVE-2009-2730

e3e5e10... by Andreas Metzler <email address hidden> on 2009-02-07

Import patches-applied version 2.4.2-6 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: fea23fa894539bb064d03d6f7b734584f6a1f3f3
Unapplied parent: ebf14c864ad8894a1fcef108ef5501f02031fca3

New changelog entries:
  * New patches, syncing with 2.4.3 upstream oldstable release:
    + 24_intermedcertificate.patch If a non-root certificate ist trusted
      gnutls certificateificate verification stops there instead of checking
      up to the root of the certificate chain.
    + 22_whitespace.patch - Whitespace only changes, to make it possible to
      apply upstream fixes without manual changes.
    + 25_bufferoverrun.patch. Fix buffer overrun bug in
      gnutls_x509_crt_list_import.
      http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e

ebf14c8... by Andreas Metzler <email address hidden> on 2009-02-07

Import patches-unapplied version 2.4.2-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ace2dc3df0150bbc8b0dd42b087db10a65ab5d54

New changelog entries:
  * New patches, syncing with 2.4.3 upstream oldstable release:
    + 24_intermedcertificate.patch If a non-root certificate ist trusted
      gnutls certificateificate verification stops there instead of checking
      up to the root of the certificate chain.
    + 22_whitespace.patch - Whitespace only changes, to make it possible to
      apply upstream fixes without manual changes.
    + 25_bufferoverrun.patch. Fix buffer overrun bug in
      gnutls_x509_crt_list_import.
      http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e

fea23fa... by Andreas Metzler <email address hidden> on 2009-01-31

Import patches-applied version 2.4.2-5 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: a1f3996868742d8da6f0b4613ce62d5935bb984a
Unapplied parent: ace2dc3df0150bbc8b0dd42b087db10a65ab5d54

New changelog entries:
  * Pull two patches from upstream stable branch to make gnutls behavior
    match documentation:
   + patch 23_permit_v1_CA.diff:Accept v1 x509 CA
     certs if GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
     GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Closes: #509593
   + 22_deprecate_md2_md5_x509_validation.diff: Verifying untrusted X.509
     certificates signed with RSA-MD2 or RSA-MD5 will now fail with a
     GNUTLS_CERT_INSECURE_ALGORITHM verification output.

ace2dc3... by Andreas Metzler <email address hidden> on 2009-01-31

Import patches-unapplied version 2.4.2-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: fd6446129caa757cee8d9bda7a1ffe624ff9232c

New changelog entries:
  * Pull two patches from upstream stable branch to make gnutls behavior
    match documentation:
   + patch 23_permit_v1_CA.diff:Accept v1 x509 CA
     certs if GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
     GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT were supplied. Closes: #509593
   + 22_deprecate_md2_md5_x509_validation.diff: Verifying untrusted X.509
     certificates signed with RSA-MD2 or RSA-MD5 will now fail with a
     GNUTLS_CERT_INSECURE_ALGORITHM verification output.

a1f3996... by Andreas Metzler <email address hidden> on 2008-12-06

Import patches-applied version 2.4.2-4 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: dd3bf9c2f138080064563295c2a8ec195f9813da
Unapplied parent: fd6446129caa757cee8d9bda7a1ffe624ff9232c

New changelog entries:
  * Add Simon Josefsson to uploaders.
  * Another fix for the verification fix. Some correct certificate chains were
    not recognized as verified. Closes: #507633

fd64461... by Andreas Metzler <email address hidden> on 2008-12-06

Import patches-unapplied version 2.4.2-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e1007a83f982a25ef842b356e5f2ee26d6491ec1

New changelog entries:
  * Add Simon Josefsson to uploaders.
  * Another fix for the verification fix. Some correct certificate chains were
    not recognized as verified. Closes: #507633

dd3bf9c... by Andreas Metzler <email address hidden> on 2008-11-12

Import patches-applied version 2.4.2-3 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: cc65143161f1d70939e57a798f405b08fcbeb33b
Unapplied parent: e1007a83f982a25ef842b356e5f2ee26d6491ec1

New changelog entries:
  * Fix a crash on trying to verify self-signed certificates introduced by the
    patch for CVE-2008-4989. Closes: #505279

e1007a8... by Andreas Metzler <email address hidden> on 2008-11-12

Import patches-unapplied version 2.4.2-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 6b7a4daceddf4a520936732320146f3923ed1432

New changelog entries:
  * Fix a crash on trying to verify self-signed certificates introduced by the
    patch for CVE-2008-4989. Closes: #505279