|Reported by:||Fernando de Oliveira||Owned by:||Fernando de Oliveira|
Description (last modified by )
None. Last one was GNUTLS-SA-2015-4 - CVE-2015-3308
[gnutls-help] gnutls 3.4.8 Nikos Mavrogiannopoulos nmav at gnutls.org Fri Jan 8 10:43:03 CET 2016 Hello, I've just released gnutls 3.4.8. This version fixes bugs and adds minor features to the current stable branch. * Version 3.4.8 (released 2016-01-08) ** libgnutls: Corrected memory leak in gnutls_pubkey_import_privkey() when used with PKCS #11 keys. ** libgnutls: For DSA and ECDSA keys in PKCS #11 objects, import their public keys from either a public key object or a certificate. That is, because private keys do not contain all the required parameters for a direct import. Reported by Jan Vcelak. ** libgnutls: Fixed issue when writing ECDSA private keys in PKCS #11 tokens. ** libgnutls: Fixed out-of-bounds read in gnutls_x509_ext_export_key_usage(), report and patch by Tim Kosse. ** libgnutls: The CHACHA20-POLY1305 ciphersuites were updated to conform to draft-ietf-tls-chacha20-poly1305-02. ** libgnutls: Several fixes in PKCS #7 signing which improve compatibility with the MacOSX tools. Reported by sskaje (#59). ** libgnutls: The max-record extension not negotiated on DTLS. This resolves issue with the max-record being negotiated but ignored. ** certtool: Added the --p7-include-cert and --p7-show-data options. ** API and ABI modifications: gnutls_pkcs7_get_embedded_data: Added ... regards, Nikos
Change History (3)
Note: See TracTickets for help on using tickets.