ubuntu/+source/gnutls26:applied/ubuntu/lucid-updates

Last commit made on 2015-03-23
Get this branch:
git clone -b applied/ubuntu/lucid-updates https://git.launchpad.net/ubuntu/+source/gnutls26
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/lucid-updates
Repository:
lp:ubuntu/+source/gnutls26

Recent commits

0348d26... by Marc Deslauriers on 2015-03-20

Import patches-applied version 2.8.5-2ubuntu0.7 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 7da4ba3acb6e2ce84410e36f97b57f1c36b90b8d
Unapplied parent: eeaf66a09392acedd301bf88f4db8a897e24c48d

New changelog entries:
  * SECURITY UPDATE: signature forgery issue
    - debian/patches/CVE-2015-0282.patch: make sure the signature
      algorithms match in lib/gnutls_algorithms.c, lib/gnutls_algorithms.h,
      lib/x509/privkey.c, lib/x509/verify.c, lib/x509/x509.c,
      lib/x509/x509_int.h.
    - CVE-2015-0282
  * SECURITY UPDATE: certificate algorithm consistency issue
    - debian/patches/CVE-2015-0294.patch: make sure the two signature
      algorithms match on cert import in lib/x509/x509.c.
    - CVE-2015-0294
  * SECURITY UPDATE: missing date/time checks on CA certificates
    - debian/patches/CVE-2014-8155.patch: perform time verification on
      trusted certificate list in lib/includes/gnutls/x509.h,
      lib/x509/verify.c.
    - CVE-2014-8155

Some recent commit information could not be fetched.