ubuntu/+source/gnutls26:debian/squeeze

Last commit made on 2014-07-19
Get this branch:
git clone -b debian/squeeze https://git.launchpad.net/ubuntu/+source/gnutls26
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/squeeze
Repository:
lp:ubuntu/+source/gnutls26

Recent commits

577e65d... by Andreas Metzler <email address hidden> on 2014-03-01

Import patches-unapplied version 2.8.6-1+squeeze3 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: aa11580323f97a56ccd7a2249cee61531ed1dbd5

New changelog entries:
  * 22_gnutls-2.8.5-cve-2014-0092.patch by Nikos Mavrogiannopoulos: Fix
    certificate validation issue. CVE-2014-0092

aa11580... by Florian Weimer on 2012-03-25

Import patches-unapplied version 2.8.6-1+squeeze2 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: cceab51bd94af8fdcee4bd645cbcc06a66e8f6a0

New changelog entries:
  * Apply patch to fix crashes in record parsing (CVE-2012-1573)

cceab51... by Andreas Metzler <email address hidden> on 2011-12-22

Import patches-unapplied version 2.8.6-1+squeeze1 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 6f39b49f19af47ac165fd6709a220dec4ebf5eee

New changelog entries:
  * Pull fixes for buffer overflow in gnutls_session_get_data() from upstream
    git. (CVE-2011-4128: GNUTLS-SA-2011-2) Closes: #648441
    20_CVE-2011-4128.part1.diff 20_CVE-2011-4128.part2.diff

6f39b49... by Andreas Metzler <email address hidden> on 2010-03-20

Import patches-unapplied version 2.8.6-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: addd175efeafd97c4279b3220373f1d9fd753bf8

New changelog entries:
  * Use dh_lintian.
  * Use dh_makeshlibs for the guile stuff, too. This gets us
    a) ldconfig in postinst. Closes: #553109
    and
    b) a shlibs file.
    However the shared objects /usr/lib/libguile-gnutls*so* are still not
    designed to be used as libraries (linking) but are dlopened. guile-1.10
    will address this issue by keeping this stuff in a private directory.
  * hotfix pkg-config files (proper fix to be included upstream).
  * Stop unneeeded linkage against libgpg-error. 16_unnecessarydep.diff

addd175... by Andreas Metzler <email address hidden> on 2009-11-13

Import patches-unapplied version 2.8.5-2 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 3ea93765b1ef302a17c8c8c9d986f29cd94689e7

New changelog entries:
  * Add a huge bunch of lintian overrides for the guile stuff to make dak
    happy.
  * Add datefudge to build-depends. (Only needed for the pkcs1-pad test.)
  * Switch to '3.0 (quilt)' source format, allowing us to use upstreams
    orig.tar.bz2 without repacking it to gz.
  * New upstream version.
    + Drop patches/20_fixtimebomb.diff.

3ea9376... by Andreas Metzler <email address hidden> on 2009-11-01

Import patches-unapplied version 2.8.4-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b6604433b270ead2a6e272a51a102293fbaa1768

New changelog entries:
  * [20_fixtimebomb.diff] Fix testsuite error. Closes: #552920

b660443... by Andreas Metzler <email address hidden> on 2009-09-26

Import patches-unapplied version 2.8.4-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4120826d4d766578b8027dd860830fb15cb70e6b

New changelog entries:
  * New upstream version.
    + Drop debian/patches/15_openpgp.diff.
  * Sync priorities with override file, libgnutls26 has been bumped from
    important to standard.

4120826... by Andreas Metzler <email address hidden> on 2009-09-05

Import patches-unapplied version 2.8.3-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: bd4dcbca3a7d045b77287b6175f0cf67ba890944

New changelog entries:
  * Empty dependency_libs in la-files. (Squeeze release goal.)

bd4dcbc... by Andreas Metzler <email address hidden> on 2009-08-22

Import patches-unapplied version 2.8.3-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 85698c80bd630b92c170485b3829499fba7f61c9

New changelog entries:
  * [ debian/patches/15_openpgp.diff ] The CVE-2009-2730 patch broke
    openpgp connections.

85698c8... by Andreas Metzler <email address hidden> on 2009-08-14

Import patches-unapplied version 2.8.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0a24734df340c16ef5c4f78676767973e67bf175

New changelog entries:
  * New upstream version.
    + Stops hardcoding a hard dependency on the versions of gcrypt and tasn it
      was built against. Closes: #540449
    + Fixes CVE-2009-2730, a vulnerability related to NUL bytes in X.509
      certificate name fields. Closes: #541439 GNUTLS-SA-2009-4
      http://lists.gnu.org/archive/html/help-gnutls/2009-08/msg00011.html
  * Drop 15_chainverify_expiredcert.diff, included upstream.
  * Urgency high, since 541439 applies to testing, too.