← Back to branch summary

~ubuntu-branches/ubuntu/dapper/gnutls12/dapper-proposed

~ubuntu-branches/ubuntu/dapper/gnutls12/dapper-proposed

« back to all changes in this revision

Viewing changes to debian/changelog

Committer: Bazaar Package Importer
Author(s): Jamie Strandboge
Date: 2008-11-25 03:59:08 UTC
Revision ID: james.westby@ubuntu.com-20081125035908-fnzak3f5ux34ohgz

Tags: 1.2.9-2ubuntu1.3

* SECURITY UPDATE: Fix for man-in-the-middle attack in certificate
  validation
  - debian/patches/91_CVE-2008-4989.diff: don't remove the last certificate
    if it is self-signed in lib/x509/verify.c
  - http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3215
  - http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3248
  - CVE-2008-4989

files added:
debian/patches/91_CVE-2008-4989.diff

files modified:
config.guess

config.sub

debian/changelog

Show diffs side-by-side

added added

removed removed

debian/changelog

1

gnutls12 (1.2.9-2ubuntu1.3) dapper-security; urgency=low

2

3

* SECURITY UPDATE: Fix for man-in-the-middle attack in certificate

4

validation

5

- debian/patches/91_CVE-2008-4989.diff: don't remove the last certificate

6

if it is self-signed in lib/x509/verify.c

7

- http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3215

8

- http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3248

9

- CVE-2008-4989

10

11

-- Jamie Strandboge <jamie@ubuntu.com> Tue, 25 Nov 2008 03:59:08 -0600

12

1

13

gnutls12 (1.2.9-2ubuntu1.2) dapper-security; urgency=low

2

14

3

15

* SECURITY UPDATE: multiple remote denial of service.

Older »