This bug was fixed in the package gnutls13 - 1.6.3-1ubuntu0.3
---------------
gnutls13 (1.6.3-1ubuntu0.3) gutsy-security; urgency=low
* Fix for regression where some valid certificate chains would be untrusted
- Update debian/patches/91_CVE-2008-4989.diff to check if last certificate
is self-signed and prevent verifying self-signed certificates against
themselves. Patch from upstream.
- http://lists.gnu.org/archive/html/gnutls-devel/2008-12/msg00008.html
- LP: #305264
-- Jamie Strandboge <[EMAIL PROTECTED]> Fri, 05 Dec 2008 14:49:34
-0600
** Changed in: gnutls13 (Ubuntu Gutsy)
Status: In Progress => Fix Released
** Changed in: gnutls13 (Ubuntu Hardy)
Status: In Progress => Fix Released
--
gnutls regression: failure in certificate chain validation
https://bugs.launchpad.net/bugs/305264
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
