Hi Andreas, On Thu, Jun 25, 2020 at 05:41:42PM +0200, Andreas Metzler wrote: > On 2020-06-25 Andreas Metzler <ametz...@bebt.de> wrote: > [...] > > * Pull fixes for CVE-2019-3836 / [GNUTLS-SA-2019-03-27, #694]. > > + 40_casts_related_to_fix_CVE-2019-3829.patch > > + 40_rel3.6.7_01-Automatically-NULLify-after-gnutls_free.patch > > + 40_rel3.6.7_01-fuzz-added-fuzzer-for-certificate-verification.patch > > + 41_use_datefudge_to_trigger_CVE-2019-3829_testcase.diff > > * More important fixes: > > + 43_rel3.6.14_10-session_pack-fix-leak-in-error-path.patch > > [One-line-fix for memleak]
Only noticed too late, but the above CVE reference should be CVE-2019-3829 in the "Pull fixes for ..." changelog entry. Regards, Salvatore