[pkgsrc/trunk]: pkgsrc/security/gnutls Update to 2.6.1:

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/security/gnutls Update to 2.6.1:
From: wiz <wiz%pkgsrc.org@localhost>
Date: Thu, 14 Oct 2021 06:51:59 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/fad821d8c080
branches:  trunk
changeset: 549874:fad821d8c080
user:      wiz <wiz%pkgsrc.org@localhost>
date:      Mon Nov 10 17:33:20 2008 +0000

description:
Update to 2.6.1:

* Version 2.6.1 (released 2008-11-10)

** libgnutls: Fix X.509 certificate chain validation error. [GNUTLS-SA-2008-3]
The flaw makes it possible for man in the middle attackers (i.e.,
active attackers) to assume any name and trick GNU TLS clients into
trusting that name.  Thanks for report and analysis from Martin von
Gagern <Martin.vGagern%gmx.net@localhost>.  [CVE-2008-4989]

Any updates with more details about this vulnerability will be added
to <http://www.gnu.org/software/gnutls/security.html>

** libgnutls: Add missing prototype for gnutls_srp_set_prime_bits.
Reported by Kevin Quick <quick%sparq.org@localhost> in
<https://savannah.gnu.org/support/index.php?106454>.

** libgnutls-extra: Protect internal symbols with static.
Fixes problem when linking certtool statically.  Tiny patch from Aaron
Ucko <ucko%ncbi.nlm.nih.gov@localhost>.

** libgnutls-openssl: Fix patch against X509_get_issuer_name.
It incorrectly returned the subject DN instead of issuer DN in v2.6.0.
Thanks to Thomas Viehmann <tv%beamnet.de@localhost> for report.

** certtool: Print a PKCS #8 key even if it is not encrypted.

** tests: Make tests compile when using internal libtasn1.
Patch by ludo%gnu.org@localhost (Ludovic Courtès).

** API and ABI modifications:
No changes since last version.

diffstat:

 security/gnutls/Makefile |  4 ++--
 security/gnutls/distinfo |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (28 lines):

diff -r 125978787f5a -r fad821d8c080 security/gnutls/Makefile
--- a/security/gnutls/Makefile  Mon Nov 10 17:21:33 2008 +0000
+++ b/security/gnutls/Makefile  Mon Nov 10 17:33:20 2008 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.73 2008/10/18 11:55:11 adam Exp $
+# $NetBSD: Makefile,v 1.74 2008/11/10 17:33:20 wiz Exp $
 
-DISTNAME=      gnutls-2.6.0
+DISTNAME=      gnutls-2.6.1
 CATEGORIES=    security devel
 MASTER_SITES=  http://josefsson.org/gnutls/releases/ \
                ftp://ftp.gnutls.org/pub/gnutls/ \
diff -r 125978787f5a -r fad821d8c080 security/gnutls/distinfo
--- a/security/gnutls/distinfo  Mon Nov 10 17:21:33 2008 +0000
+++ b/security/gnutls/distinfo  Mon Nov 10 17:33:20 2008 +0000
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.48 2008/10/29 11:45:34 wiz Exp $
+$NetBSD: distinfo,v 1.49 2008/11/10 17:33:20 wiz Exp $
 
-SHA1 (gnutls-2.6.0.tar.bz2) = bbd9e5f3a77bfcbef5a769c67d1576e7a6e4bda5
-RMD160 (gnutls-2.6.0.tar.bz2) = 1d92662edd64e93e658fc527f1dfbfc99ab3a1da
-Size (gnutls-2.6.0.tar.bz2) = 5112845 bytes
+SHA1 (gnutls-2.6.1.tar.bz2) = a445e84176bf772794db9d8c71d5515dedb14bcc
+RMD160 (gnutls-2.6.1.tar.bz2) = c39539bd5d4e07dc09f5827a8c22d876272b4bbc
+Size (gnutls-2.6.1.tar.bz2) = 5113327 bytes
 SHA1 (patch-aa) = 8e9ea317342d584fb6f931f96458cc3d7d747ca0
 SHA1 (patch-ab) = 17605f0d3b1895c1c63c8dabc21bdebf95eb7785
 SHA1 (patch-ae) = f505476ce0477dc547e8698d205d6ba26fe85f48

Prev by Date: [pkgsrc/trunk]: pkgsrc/doc Updated textproc/p5-XML-LibXSLT to 1.68
Next by Date: [pkgsrc/trunk]: pkgsrc/doc Updated print/a2ps to 4.14
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc Updated textproc/p5-XML-LibXSLT to 1.68
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc Updated print/a2ps to 4.14
Indexes:

Home | Main Index | Thread Index | Old Index