** Changed in: gnutls26 (Ubuntu Precise)
Status: New => Fix Committed
** Description changed:
+ Impact:
+
+ gnutls-cli (linked with libgnutls26, like the OpenLDAP client libraries)
+ cannot contact our LDAP server securely in precise
+
+ Test case:
+
+ if you generate two CA
+ certificates (#1 and #2) with the same DN and hash, then sign the LDAP
server’s
+ certificate (#3) with #2, not #1, GnuTLS 2.x will not validate it.
+
+ Regression potential:
+
+ the fix is coming from upstream and is available in Debian
+
+ ---
+
Hi,
while trying to debug NSS with LDAP and SSL (not LP#423252 because it
failed even for nōn-suid programmes) I found that gnutls-cli (linked
with libgnutls26, like the OpenLDAP client libraries) cannot contact our
LDAP server securely in precise. More testing resulted in determining
this to be a regression between natty and oneiric, still present in
precise. I’m in contact with upstream about this already. More
information will thus follow.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1003841
Title:
(regression) cannot contact ldaps server
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gnutls13/+bug/1003841/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
