[ubuntu/lucid-security] gnutls26 2.8.5-2ubuntu0.3 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Feb 27 13:05:25 UTC 2013
gnutls26 (2.8.5-2ubuntu0.3) lucid-security; urgency=low
* SECURITY UPDATE: "Lucky Thirteen" timing side-channel TLS attack
- debian/patches/CVE-2013-1619.patch: avoid timing attacks in
lib/gnutls_cipher.c, lib/gnutls_hash_int.h.
- CVE-2013-1619
gnutls26 (2.8.5-2ubuntu0.2) lucid-proposed; urgency=low
* Apply upstream patch to fix validation of certificates when more than
one with the same short hash exists in the CA bundle (LP: #1003841).
Date: 2013-02-25 19:10:21.336247+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/gnutls26/2.8.5-2ubuntu0.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list