Viewing all changes in revision 16.
- Committer: Package Import Robot
- Date: 2014-08-14 09:47:32 UTC
- Revision ID: package-import@ubuntu.com-20140814094732-t49w7lfur4vl495a
* SECURITY UPDATE: cert spoofing via NUL characters in CommonName and
SubjectAltNames
- debian/patches/CVE-2014-3504.patch: escape null bytes in
buckets/ssl_buckets.c.
- CVE-2014-3504
* Fix FTBFS because of expired test certs:
- debian/patches/expired_certs.patch: switch to test certs from serf
1.3.6.
- debian/source/format: switch to 3.0 (quilt) so we can handle the
binary cert file
- debian/source/include-binaries: include binary cert file from 1.3.6.
SubjectAltNames
- debian/patches/CVE-2014-3504.patch: escape null bytes in
buckets/ssl_buckets.c.
- CVE-2014-3504
* Fix FTBFS because of expired test certs:
- debian/patches/expired_certs.patch: switch to test certs from serf
1.3.6.
- debian/source/format: switch to 3.0 (quilt) so we can handle the
binary cert file
- debian/source/include-binaries: include binary cert file from 1.3.6.
- files added:
- .pc
- .pc/CVE-2014-3504.patch
- .pc/CVE-2014-3504.patch/buckets
- .pc/expired_certs.patch
- .pc/expired_certs.patch/test
- .pc/expired_certs.patch/test/server
- .pc/libtool
- files modified:
- SConstruct
expand all
collapse all
added
removed
