Hello, I have uploaded gnutls26 2.4.2-6 on saturday, the upload is targeted for lenny. I know it is rather late, but the timing was not in my hands.
| New patches, syncing with 2.4.3 upstream oldstable release: | + 24_intermedcertificate.patch If a non-root certificate ist trusted | gnutls certificateificate verification stops there instead of checking | up to the root of the certificate chain. This provides a workaround against the changed behavior with respect to x509 v1 CA after the fix for CVE-2008-4989. People can make the intermediate certificate trusted to work around the fact that GnuTLS will not trust certs signed by the toplevel x509 v1 CA cert anymore (unless GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT are set). | + 22_whitespace.patch - Whitespace only changes, to make it possible to | apply upstream fixes without manual changes. It is rather short, too. | + 25_bufferoverrun.patch. Fix buffer overrun bug in | gnutls_x509_crt_list_import. | http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e An earlier that I somehow overlooked and forgot to pull from upstream stable. thanks, cu andreas -- `What a good friend you are to him, Dr. Maturin. His other friends are so grateful to you.' `I sew his ears on from time to time, sure' -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
