-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2008-9530 2008-11-12 01:52:34 --------------------------------------------------------------------------------
Name : gnutls Product : Fedora 9 Version : 2.0.4 Release : 4.fc9 URL : http://www.gnutls.org/ Summary : A TLS protocol implementation Description : GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer. Currently the GnuTLS library implements the proposed standards by the IETF's TLS working group. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 11 2008 Tomas Mraz <[EMAIL PROTECTED]> 2.0.4-4 - fix chain verification issue CVE-2008-4989 (#470079) * Tue May 20 2008 Tomas Mraz <[EMAIL PROTECTED]> 2.0.4-3 - fix three security issues in gnutls handshake - GNUTLS-SA-2008-1 (#447461, #447462, #447463) -------------------------------------------------------------------------------- References: [ 1 ] Bug #470079 - CVE-2008-4989 gnutls: certificate chain verification flaw https://bugzilla.redhat.com/show_bug.cgi?id=470079 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gnutls' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at http://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
