Opened 11 years ago
Last modified 11 years ago
#4748 closed enhancement
gnutls-3.2.12.1 — at Version 1
| Reported by: | Fernando de Oliveira | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | 7.6 |
| Component: | BOOK | Version: | SVN |
| Severity: | normal | Keywords: | |
| Cc: |
Description (last modified by ) ¶
ftp://ftp.gnutls.org/gcrypt/gnutls/v3.2/gnutls-3.2.12.tar.xz
I have seen a report that p11-kit needs to be newer, but I'm not yet sure if that affects BLFS. Will test.
Change History (1)
comment:1 by , 11 years ago
| Description: | modified (diff) |
|---|---|
| Owner: | changed from to |
| Status: | new → assigned |
| Summary: | gnutls-3.2.12 → gnutls-3.2.12.1 |
Note:
See TracTickets
for help on using tickets.
Updated to 3.2.12.1 to revert an ABI change in 3.2.12.
These fix CVE-2014-0092 :
A vulnerability was discovered that affects the certificate verification functions of all gnutls versions. A specially crafted certificate could bypass certificate validation checks. The vulnerability was discovered during an audit of GnuTLS for Red Hat.