ubuntu/+source/gnutls26:applied/ubuntu/trusty-proposed

Last commit made on 2019-03-15
Get this branch:
git clone -b applied/ubuntu/trusty-proposed https://git.launchpad.net/ubuntu/+source/gnutls26
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/trusty-proposed
Repository:
lp:ubuntu/+source/gnutls26

Recent commits

012d015... by Samuel Leslie on 2017-09-03

Import patches-applied version 2.12.23-12ubuntu2.10 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: d8df2c34b7cf4ef2630001e5756cd21172c9a241
Unapplied parent: 82b69e219acd167b052f518ff7d7ffd07f91386b

New changelog entries:
  * Backport an upstream commit for better TLS 1.2 compatibility during
    handshakes (LP: #1444656):
    - debian/patches/fix-tls12-handshake.diff: This fixes a handshake
      failure on TLS 1.2 connections when one or more certificates in the
      chain use the SHA384 or SHA512 signature algorithm.

82b69e2... by Samuel Leslie on 2017-09-03

Backport an upstream commit for better TLS 1.2 compatibility during handshakes

Gbp-Pq: fix-tls12-handshake.diff.

4323a32... by Samuel Leslie on 2017-09-03

[PATCH] cdk_pkt_read: enforce packet limits

Gbp-Pq: CVE-2017-7869.patch.

296c9d0... by Samuel Leslie on 2017-09-03

fix denial of service via warning alerts

Gbp-Pq: CVE-2016-8610.patch.

564b948... by Samuel Leslie on 2017-09-03

[PATCH] opencdk: read_attribute: added more precise checks when reading stream

Gbp-Pq: CVE-2017-5337.patch.

e845c83... by Samuel Leslie on 2017-09-03

[PATCH] opencdk: cdk_pk_get_keyid: fix stack overflow

Gbp-Pq: CVE-2017-5336.patch.

22ab00a... by Samuel Leslie on 2017-09-03

[PATCH] opencdk: added error checking in the stream reading functions

Gbp-Pq: CVE-2017-5335.patch.

5d99840... by Samuel Leslie on 2017-09-03

when comparing a CA certificate with the trusted list compare

Gbp-Pq: compare_ca_name_and_key.patch.

46ddaaf... by Samuel Leslie on 2017-09-03

[PATCH] _gnutls_session_sign_algo_enabled: do not consider any values from the extension data to decide acceptable algorithms

Gbp-Pq: CVE-2015-7575.patch.

69435fc... by Samuel Leslie on 2017-09-03

Fix TLS Poodle

Gbp-Pq: fix_tls_poodle.patch.