[ubuntu/oneiric-security] gnutls26_2.10.5-1ubuntu3.1_powerpc_translations.tar.gz, gnutls26_2.10.5-1ubuntu3.1_armel_translations.tar.gz, gnutls26, gnutls26_2.10.5-1ubuntu3.1_i386_translations.tar.gz, gnutls26_2.10.5-1ubuntu3.1_amd64_translations.tar.gz 2.10.5-1ubuntu3.1 (Accepted)
Tyler Hicks
tyhicks at canonical.com
Thu Apr 5 22:03:27 UTC 2012
gnutls26 (2.10.5-1ubuntu3.1) oneiric-security; urgency=low
* SECURITY UPDATE: Denial of service in client application
- debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
session data. Based on upstream patch.
- CVE-2011-4128
* SECURITY UPDATE: Denial of service via crafted TLS record
- debian/patches/CVE-2012-1573.patch: Validate the size of a
GenericBlockCipher structure as it is processed. Based on upstream
patch.
- CVE-2012-1573
Date: Wed, 04 Apr 2012 11:13:02 -0500
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/gnutls26/2.10.5-1ubuntu3.1
-------------- next part --------------
Format: 1.8
Date: Wed, 04 Apr 2012 11:13:02 -0500
Source: gnutls26
Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx26
Architecture: source
Version: 2.10.5-1ubuntu3.1
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description:
gnutls-bin - the GNU TLS library - commandline utilities
gnutls-doc - the GNU TLS library - documentation and examples
guile-gnutls - the GNU TLS library - GNU Guile bindings
libgnutls-dev - the GNU TLS library - development files
libgnutls26 - the GNU TLS library - runtime library
libgnutls26-dbg - GNU TLS library - debugger symbols
libgnutlsxx26 - the GNU TLS library - C++ runtime library
Changes:
gnutls26 (2.10.5-1ubuntu3.1) oneiric-security; urgency=low
.
* SECURITY UPDATE: Denial of service in client application
- debian/patches/CVE-2011-4128.patch: Fix buffer bounds check when copying
session data. Based on upstream patch.
- CVE-2011-4128
* SECURITY UPDATE: Denial of service via crafted TLS record
- debian/patches/CVE-2012-1573.patch: Validate the size of a
GenericBlockCipher structure as it is processed. Based on upstream
patch.
- CVE-2012-1573
Checksums-Sha1:
153d01c362d3cda4199c96cf2214d52ea9cb7232 2413 gnutls26_2.10.5-1ubuntu3.1.dsc
0d61a8ea6abac74a20ee34f6fcd4d61f2c207383 22902 gnutls26_2.10.5-1ubuntu3.1.debian.tar.gz
Checksums-Sha256:
1fc0f95a7ba64aa37f422c25b1be4cafbfaff3c17f13b5f49c990c102ba2e76f 2413 gnutls26_2.10.5-1ubuntu3.1.dsc
7e827b14b442705ab250ce1ad38335e82e66cccc222279a681bcaf4692b6153d 22902 gnutls26_2.10.5-1ubuntu3.1.debian.tar.gz
Files:
e22cd6e40c66ae50e158964b6d25eb29 2413 libs optional gnutls26_2.10.5-1ubuntu3.1.dsc
a169e1f9dbfd38db501449a92f8e5ac4 22902 libs optional gnutls26_2.10.5-1ubuntu3.1.debian.tar.gz
Original-Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
More information about the Oneiric-changes
mailing list