[ubuntu/oneiric-security] gnutls26 2.10.5-1ubuntu3.3 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Wed Feb 27 13:05:28 UTC 2013

gnutls26 (2.10.5-1ubuntu3.3) oneiric-security; urgency=low

  * SECURITY UPDATE: "Lucky Thirteen" timing side-channel TLS attack
    - debian/patches/CVE-2013-1619.patch: avoid timing attacks in
      lib/gnutls_cipher.c, lib/gnutls_hash_int.h.
    - CVE-2013-1619

gnutls26 (2.10.5-1ubuntu3.2) oneiric-proposed; urgency=low

  * Apply upstream patch to fix validation of certificates when more than
    one with the same short hash exists in the CA bundle (LP: #1003841).

Date: 2013-02-25 17:40:11.697181+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Oneiric-changes mailing list