Hello community, here is the log from the commit of package patchinfo.2618 for openSUSE:13.1:Update checked in at 2014-03-05 07:27:58 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.1:Update/patchinfo.2618 (Old) and /work/SRC/openSUSE:13.1:Update/.patchinfo.2618.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.2618" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo> <issue id="865804" tracker="bnc">VUL-0: CVE-2014-0092: gnutls: insufficient X.509 certificate verification</issue> <issue id="CVE-2014-0092" tracker="cve" /> <category>security</category> <rating>critical</rating> <packager>shawn2012</packager> <description> The gnutls library was updated to fixed x509 certificate validation problems, where man-in-the-middle attackers could hijack SSL connections. This update also reenables Elliptic Curve support to meet current day cryptographic requirements. </description> <summary>gnutls: fixed SSL certificate validation problems</summary> </patchinfo> -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
