-
Committer:
Bazaar Package Importer
-
Author(s):
Jamie Strandboge
-
Date:
2008-12-05 14:53:25 UTC
-
Revision ID:
james.westby@ubuntu.com-20081205145325-zxsch3lbb960lpif
Tags: 1.2.9-2ubuntu1.4
* Fix for regression where some valid certificate chains would be untrusted
- Update debian/patches/91_CVE-2008-4989.diff to check if last certificate
is self-signed and prevent verifying self-signed certificates against
themselves. Patch from upstream.
- http://lists.gnu.org/archive/html/gnutls-devel/2008-12/msg00008.html
- LP: #305264