id summary reporter owner description type status priority milestone component version severity resolution keywords cc 7337 gnutls-3.4.8 Fernando de Oliveira Fernando de Oliveira "[ftp://ftp.gnutls.org/gcrypt/gnutls/v3.4/gnutls-3.4.8.tar.xz] [ftp://ftp.gnutls.org/gcrypt/gnutls/v3.4/gnutls-3.4.8.tar.xz.sig] [http://www.gnutls.org/security.html] {{{ None. Last one was GNUTLS-SA-2015-4 - CVE-2015-3308 }}} [https://lists.gnupg.org/pipermail/gnutls-help/2016-January/004053.html] {{{ [gnutls-help] gnutls 3.4.8 Nikos Mavrogiannopoulos nmav at gnutls.org Fri Jan 8 10:43:03 CET 2016 Hello, I've just released gnutls 3.4.8. This version fixes bugs and adds minor features to the current stable branch. * Version 3.4.8 (released 2016-01-08) ** libgnutls: Corrected memory leak in gnutls_pubkey_import_privkey() when used with PKCS #11 keys. ** libgnutls: For DSA and ECDSA keys in PKCS #11 objects, import their public keys from either a public key object or a certificate. That is, because private keys do not contain all the required parameters for a direct import. Reported by Jan Vcelak. ** libgnutls: Fixed issue when writing ECDSA private keys in PKCS #11 tokens. ** libgnutls: Fixed out-of-bounds read in gnutls_x509_ext_export_key_usage(), report and patch by Tim Kosse. ** libgnutls: The CHACHA20-POLY1305 ciphersuites were updated to conform to draft-ietf-tls-chacha20-poly1305-02. ** libgnutls: Several fixes in PKCS #7 signing which improve compatibility with the MacOSX tools. Reported by sskaje (#59). ** libgnutls: The max-record extension not negotiated on DTLS. This resolves issue with the max-record being negotiated but ignored. ** certtool: Added the --p7-include-cert and --p7-show-data options. ** API and ABI modifications: gnutls_pkcs7_get_embedded_data: Added ... regards, Nikos }}}" enhancement closed normal 7.9 BOOK SVN normal fixed