Accepting request 294011 from Base:System

- updated to 3.3.13 (released 2015-03-30)
  ** libgnutls: When retrieving OCTET STRINGS from PKCS #12 ContentInfo
  structures use BER to decode them (requires libtasn1 4.3). That allows
  to decode some more complex structures.
  ** libgnutls: When an end-certificate with no name is present and there
  are CA name constraints, don't reject the certificate. This follows RFC5280
  advice closely. Reported by Fotis Loukos.
  ** libgnutls: Fixed handling of supplemental data with types > 255.
  Patch by Thierry Quemerais.
  ** libgnutls: Fixed double free in the parsing of CRL distribution points certificate
  extension. Reported by Robert Święcki.
  ** libgnutls: Fixed a two-byte stack overflow in DTLS 0.9 protocol. That
  protocol is not enabled by default (used by openconnect VPN).
  ** libgnutls: The maximum user data send size is set to be the same for
  block and non-block ciphersuites. This addresses a regression with wine:
  https://bugs.winehq.org/show_bug.cgi?id=37500
  ** libgnutls: When generating PKCS #11 keys, set CKA_ID, CKA_SIGN,
  and CKA_DECRYPT when needed.
  ** libgnutls: Allow names with zero size to be set using
  gnutls_server_name_set(). That will disable the Server Name Indication.
  Resolves issue with wine: https://gitlab.com/gnutls/gnutls/issues/2

OBS-URL: https://build.opensuse.org/request/show/294011
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gnutls?expand=0&rev=82

gnutls-3.3.13.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:91bf1ef5c159b7f2176f972184545b287af6507ab55a543f6007d31406b97a99
-size 6189164

gnutls-3.3.14.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0dfa0030faad8909c1e904105198232d6bc0123cae8cf4933b2bac85ee7cec52
+size 6286196

gnutls.changes

@@ -1,3 +1,36 @@
+-------------------------------------------------------------------
+Wed Apr  1 14:26:31 UTC 2015 - meissner@suse.com
+
+- updated to 3.3.13 (released 2015-03-30)
+
+  ** libgnutls: When retrieving OCTET STRINGS from PKCS #12 ContentInfo
+  structures use BER to decode them (requires libtasn1 4.3). That allows
+  to decode some more complex structures.
+
+  ** libgnutls: When an end-certificate with no name is present and there
+  are CA name constraints, don't reject the certificate. This follows RFC5280
+  advice closely. Reported by Fotis Loukos.
+
+  ** libgnutls: Fixed handling of supplemental data with types > 255.
+  Patch by Thierry Quemerais.
+
+  ** libgnutls: Fixed double free in the parsing of CRL distribution points certificate
+  extension. Reported by Robert Święcki.
+
+  ** libgnutls: Fixed a two-byte stack overflow in DTLS 0.9 protocol. That
+  protocol is not enabled by default (used by openconnect VPN).
+
+  ** libgnutls: The maximum user data send size is set to be the same for
+  block and non-block ciphersuites. This addresses a regression with wine:
+  https://bugs.winehq.org/show_bug.cgi?id=37500
+
+  ** libgnutls: When generating PKCS #11 keys, set CKA_ID, CKA_SIGN,
+  and CKA_DECRYPT when needed.
+
+  ** libgnutls: Allow names with zero size to be set using
+  gnutls_server_name_set(). That will disable the Server Name Indication.
+  Resolves issue with wine: https://gitlab.com/gnutls/gnutls/issues/2
+
 -------------------------------------------------------------------
 Wed Mar 25 20:52:43 UTC 2015 - astieger@suse.com
 

gnutls.spec

@@ -26,7 +26,7 @@
 %bcond_with tpm
 
 Name:           gnutls
-Version:        3.3.13
+Version:        3.3.14
 Release:        0
 Summary:        The GNU Transport Layer Security Library
 License:        LGPL-2.1+ and GPL-3.0+
@@ -45,7 +45,7 @@ BuildRequires:  automake
 BuildRequires:  gcc-c++
 BuildRequires:  libidn-devel
 BuildRequires:  libnettle-devel >= 2.7
-BuildRequires:  libtasn1-devel >= 2.14
+BuildRequires:  libtasn1-devel >= 4.3
 BuildRequires:  libtool
 %if %{with tpm}
 BuildRequires:  trousers-devel