Opened 9 years ago

Closed 9 years ago

#7337 closed enhancement (fixed)


Reported by: Fernando de Oliveira Owned by: Fernando de Oliveira
Priority: normal Milestone: 7.9
Component: BOOK Version: SVN
Severity: normal Keywords:

Description (last modified by Fernando de Oliveira)

None. Last one was GNUTLS-SA-2015-4 - CVE-2015-3308

[gnutls-help] gnutls 3.4.8
Nikos Mavrogiannopoulos nmav at
Fri Jan 8 10:43:03 CET 2016

 I've just released gnutls 3.4.8. This version fixes bugs and adds
minor features to the current stable branch.

* Version 3.4.8 (released 2016-01-08)

** libgnutls: Corrected memory leak in gnutls_pubkey_import_privkey()
   when used with PKCS #11 keys.

** libgnutls: For DSA and ECDSA keys in PKCS #11 objects, import
   their public keys from either a public key object or a certificate.
   That is, because private keys do not contain all the required
   parameters for a direct import. Reported by Jan Vcelak.

** libgnutls: Fixed issue when writing ECDSA private keys in PKCS #11

** libgnutls: Fixed out-of-bounds read in 
   gnutls_x509_ext_export_key_usage(), report and patch by Tim Kosse.

** libgnutls: The CHACHA20-POLY1305 ciphersuites were updated to 
   conform to draft-ietf-tls-chacha20-poly1305-02.

** libgnutls: Several fixes in PKCS #7 signing which improve 
   compatibility with the MacOSX tools. Reported by sskaje (#59).

** libgnutls: The max-record extension not negotiated on DTLS. This
   resolves issue with the max-record being negotiated but ignored.

** certtool: Added the --p7-include-cert and --p7-show-data options.

** API and ABI modifications:
gnutls_pkcs7_get_embedded_data: Added



Change History (3)

comment:1 by Fernando de Oliveira, 9 years ago

Description: modified (diff)

comment:2 by Fernando de Oliveira, 9 years ago

Owner: changed from blfs-book@… to Fernando de Oliveira
Status: newassigned

comment:3 by Fernando de Oliveira, 9 years ago

Resolution: fixed
Status: assignedclosed

Fixed at r16797.

Note: See TracTickets for help on using tickets.