-
Committer:
Bazaar Package Importer
-
Author(s):
Jamie Strandboge
-
Date:
2008-12-05 14:49:34 UTC
-
Revision ID:
james.westby@ubuntu.com-20081205144934-oskhfyi2oi45ub3q
Tags: 1.6.3-1ubuntu0.3
* Fix for regression where some valid certificate chains would be untrusted
- Update debian/patches/91_CVE-2008-4989.diff to check if last certificate
is self-signed and prevent verifying self-signed certificates against
themselves. Patch from upstream.
- http://lists.gnu.org/archive/html/gnutls-devel/2008-12/msg00008.html
- LP: #305264