The GNU Transport Layer Security Library
The GnuTLS project aims to develop a library that provides a secure
layer over a reliable transport layer. Currently the GnuTLS library
implements the proposed standards of the IETF's TLS working group.
- Developed at security:tls
- Sources inherited from project openSUSE:Factory
-
8
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Leap:15.0:Staging:FactoryCandidates/gnutls && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
audit-improve.patch | 0000000884 884 Bytes | |
baselibs.conf | 0000000147 147 Bytes | |
gnutls-3.0.26-skip-test-fwrite.patch | 0000000801 801 Bytes | |
gnutls-3.2.15.tar.xz | 0005140200 4.9 MB | |
gnutls-3.2.15.tar.xz.sig | 0000000287 287 Bytes | |
gnutls-implement-trust-store-dir-3.2.8.diff | 0000004617 4.51 KB | |
gnutls.changes | 0000081339 79.4 KB | |
gnutls.keyring | 0000084050 82.1 KB | |
gnutls.spec | 0000008121 7.93 KB |
Revision 74 (latest revision is 155)
Stephan Kulow (coolo)
accepted
request 236129
from
Marcus Meissner (msmeissn)
(revision 74)
- Version 3.2.15 (released 2014-05-30) ** libgnutls: Eliminated memory corruption issue in Server Hello parsing. Issue reported by Joonas Kuorilehto of Codenomicon. (CVE-2014-3466 / bnc#880730) ** libgnutls: Several memory leaks caused by error conditions were fixed. The leaks were identified using valgrind and the Codenomicon TLS test suite. ** libgnutls: Increased the maximum certificate size buffer in the PKCS #11 subsystem. ** libgnutls: Check the return code of getpwuid_r() instead of relying on the result value. That avoids issue in certain systems, when using tofu authentication and the home path cannot be determined. Issue reported by Viktor Dukhovni. ** gnutls-cli: if dane is requested but not PKIX verification, then only do verify the end certificate. ** ocsptool: Include path in ocsp request. This resolves #108582 (https://savannah.gnu.org/support/?108582), reported by Matt McCutchen. - Version 3.2.14 (released 2014-05-06) ** libgnutls: Fixed issue with the check of incoming data when two different recv and send pointers have been specified. Reported and investigated by JMRecio. ** libgnutls: Fixed issue in the RSA-PSK key exchange, which would result to illegal memory access if a server hint was provided. ** libgnutls: Fixed client memory leak in the PSK key exchange, if a server hint was provided. ** libgnutls: Several small bug fixes identified using valgrind and the Codenomicon TLS test suite. ** libgnutls: Several small bug fixes found by coverity. ** libgnutls-dane: Accept a certificate using DANE if there is at least one entry that matches the certificate. Patch by simon [at] arlott.org.
Comments 0