Hi,
Attached a patch from cvs which fixes the problem.
Regards,
Matthijs Mohlmann
===
RCS file: /cvs/gnutls/gnutls/lib/gnutls_cipher.c,v
retrieving revision 2.70.2.4
retrieving revision 2.70.2.5
diff -u -r2.70.2.4 -r2.70.2.5
---
Hi,
It seems that the last part of the patch is already applied.
Sorry, i didn't noticed that.
Regards,
Matthijs Mohlmann
signature.asc
Description: OpenPGP digital signature
Hi Matthijs,
On Sun, May 15, 2005 at 12:44:44PM +0200, Matthijs Mohlmann wrote:
Attached a patch from cvs which fixes the problem.
What does the second part of this patch have to do with the first?
--
Steve Langasek
postmodern programmer
Hi,
It was in the same commit in cvs as the first part and i thought it has
something todo with the security problem. Later i reviewed the patch
again and the second part seems already applied by a previous upload.
It was included in the patch I submitted by accident.
I'm still wondering why
Package: libgnutls11
Version: 1.0.16-9
Severity: serious
The current libgnutls11 ships with a major bug, which improperly checks
user provided data, and can easily lead to denial of service attacks.
The bug was discovered by INL during a security audit of NuFW, and
reported to the gnutls
5 matches
Mail list logo