Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package gnutls for openSUSE:Factory checked in at 2021-03-16 15:42:53 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gnutls (Old) and /work/SRC/openSUSE:Factory/.gnutls.new.2401 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gnutls" Tue Mar 16 15:42:53 2021 rev:129 rq:879119 version:3.7.1 Changes: -------- --- /work/SRC/openSUSE:Factory/gnutls/gnutls.changes 2021-03-03 18:33:47.843330743 +0100 +++ /work/SRC/openSUSE:Factory/.gnutls.new.2401/gnutls.changes 2021-03-16 15:44:01.441000658 +0100 @@ -1,0 +2,20 @@ +Fri Mar 12 18:45:38 UTC 2021 - Pedro Monreal <[email protected]> + +- Update to 3.7.1: + [bsc#1183456, CVE-2021-20232] [bsc#1183457, CVE-2021-20231] + * Fixed potential use-after-free in sending "key_share" and + "pre_shared_key" extensions. + * Fixed a regression in handling duplicated certs in a chain. + * Fixed sending of session ID in TLS 1.3 middlebox compatibility + mode. In that mode the client shall always send a non-zero + session ID to make the handshake resemble the TLS 1.2 + resumption; this was not true in the previous versions. + * Removed dependency on the external 'fipscheck' package, + when compiled with --enable-fips140-mode. + * Added padlock acceleration for AES-192-CBC. +- Remove patches upstream: + * gnutls-gnutls-cli-debug.patch + * gnutls-ignore-duplicate-certificates.patch + * gnutls-test-fixes.patch + +------------------------------------------------------------------- Old: ---- gnutls-3.7.0.tar.xz gnutls-3.7.0.tar.xz.sig gnutls-gnutls-cli-debug.patch gnutls-ignore-duplicate-certificates.patch gnutls-test-fixes.patch New: ---- gnutls-3.7.1.tar.xz gnutls-3.7.1.tar.xz.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gnutls.spec ++++++ --- /var/tmp/diff_new_pack.xKtZPq/_old 2021-03-16 15:44:02.193001861 +0100 +++ /var/tmp/diff_new_pack.xKtZPq/_new 2021-03-16 15:44:02.197001868 +0100 @@ -28,7 +28,7 @@ %bcond_with tpm %bcond_without guile Name: gnutls -Version: 3.7.0 +Version: 3.7.1 Release: 0 Summary: The GNU Transport Layer Security Library License: LGPL-2.1-or-later AND GPL-3.0-or-later @@ -42,12 +42,6 @@ Patch1: gnutls-3.6.6-set_guile_site_dir.patch Patch2: gnutls-temporarily_disable_broken_guile_reauth_test.patch Patch3: gnutls-FIPS-TLS_KDF_selftest.patch -#PATCH-FIX-UPSTREAM gitlab.com/gnutls/gnutls/issues/1131 -Patch4: gnutls-ignore-duplicate-certificates.patch -#PATCH-FIX-UPSTREAM gitlab.com/gnutls/gnutls/issues/1135 -Patch5: gnutls-test-fixes.patch -#PATCH-FIX-UPSTREAM bsc#1171565 gitlab.com/gnutls/gnutls/merge_requests/1387 -Patch6: gnutls-gnutls-cli-debug.patch BuildRequires: autogen BuildRequires: automake BuildRequires: datefudge ++++++ gnutls-3.7.0.tar.xz -> gnutls-3.7.1.tar.xz ++++++ ++++ 70367 lines of diff (skipped)
