-
Committer:
Bazaar Package Importer
-
Author(s):
Jamie Strandboge
-
Date:
2008-12-05 14:36:48 UTC
-
Revision ID:
james.westby@ubuntu.com-20081205143648-ypy17302uevgw4dz
Tags: 2.4.1-1ubuntu0.2
* Fix for regression where some valid certificate chains would be untrusted
- Update debian/patches/20_CVE-2008-4989.diff to check if last certificate
is self-signed and prevent verifying self-signed certificates against
themselves. Patch from upstream.
- http://lists.gnu.org/archive/html/gnutls-devel/2008-12/msg00008.html
- LP: #305264