#4748: gnutls-3.2.12.1
-------------------------+-----------------------
Reporter: fo | Owner: ken@…
Type: enhancement | Status: assigned
Priority: normal | Milestone: 7.6
Component: BOOK | Version: SVN
Severity: normal | Resolution:
Keywords: |
-------------------------+-----------------------
Changes (by ken@…):
* owner: blfs-book@… => ken@…
* status: new => assigned
Old description:
> [ftp://ftp.gnutls.org/gcrypt/gnutls/v3.2/gnutls-3.2.12.tar.xz]
New description:
[ftp://ftp.gnutls.org/gcrypt/gnutls/v3.2/gnutls-3.2.12.tar.xz]
I have seen a report that p11-kit needs to be newer, but I'm not yet sure
if that affects BLFS. Will test.
--
Comment:
Updated to 3.2.12.1 to revert an ABI change in 3.2.12.
These fix CVE-2014-0092 :
A vulnerability was discovered that affects the certificate verification
functions of all gnutls versions. A specially crafted certificate could
bypass certificate validation checks. The vulnerability was discovered
during an audit of GnuTLS for Red Hat.
--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/4748#comment:1>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
--
http://linuxfromscratch.org/mailman/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
