~ubuntu-branches/ubuntu/trusty/gnutls26/trusty-security

« back to all changes in this revision

Viewing changes to .pc/CVE-2015-7575.patch/

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2016-01-07 10:38:24 UTC
  • Revision ID: package-import@ubuntu.com-20160107103824-g02rvpjtxfa9yy4d
Tags: 2.12.23-12ubuntu2.4
* SECURITY UPDATE: incorrect RSA+MD5 support with TLS 1.2
  - debian/patches/CVE-2015-7575.patch: do not consider any values from
    the extension data to decide acceptable algorithms in
    lib/ext_signature.c.
  - CVE-2015-7575

Show diffs side-by-side

added added

removed removed

Lines of Context: