Viewing all changes in revision 15.
- Committer: Bazaar Package Importer
- Date: 2008-11-25 03:52:47 UTC
- Revision ID: james.westby@ubuntu.com-20081125035247-1o4gcbhj9ax0uihr
* SECURITY UPDATE: Fix for man-in-the-middle attack in certificate
validation
- debian/patches/91_CVE-2008-4989.diff: don't remove the last certificate
if it is self-signed in lib/x509/verify.c
- http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3215
- http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3248
- CVE-2008-4989
validation
- debian/patches/91_CVE-2008-4989.diff: don't remove the last certificate
if it is self-signed in lib/x509/verify.c
- http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3215
- http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3248
- CVE-2008-4989
- files added:
- debian/patches/91_CVE-2008-4989.diff
- files modified:
- debian/changelog
expand all
collapse all
added
removed
