Accepting request 753784 from home:AndreasStieger:branches:security:tls

gnutls 3.6.11.1

OBS-URL: https://build.opensuse.org/request/show/753784
OBS-URL: https://build.opensuse.org/package/show/security:tls/gnutls?expand=0&rev=28

gnutls-3.6.10.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b1f3ca67673b05b746a961acf2243eaae0ffe658b6a6494265c648e7c7812293
-size 5795984

gnutls-3.6.11.1.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:fbba12f3db9a55dbf027e14111755817ec44b57eabec3e8089aac8ac6f533cf8
+size 5902328

gnutls.changes

@@ -1,3 +1,20 @@
+-------------------------------------------------------------------
+Tue Dec  3 19:34:20 UTC 2019 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- gnutls 3.6.11.1:
+  * libgnutls: Corrected issue with TLS 1.2 session ticket
+    handling as client during resumption
+  * libgnutls: gnutls_base64_decode2() succeeds decoding the empty
+    string to the empty string. This is a behavioral change of the
+    API but it conforms to the RFC4648 expectations
+  * libgnutls: Fixed AES-CFB8 implementation, when input is shorter
+    than the block size. Fix backported from nettle.
+  * certtool: CRL distribution points will be set in CA
+    certificates even when non self-signed
+  * gnutls-cli/serv: added raw public-key handling capabilities
+    (RFC7250). Key material can be set via the --rawpkkeyfile and
+    --rawpkfile flags.
+
 -------------------------------------------------------------------
 Thu Oct 10 17:48:44 UTC 2019 - Andreas Stieger <andreas.stieger@gmx.de>
 

gnutls.spec

@@ -28,7 +28,7 @@
 %bcond_with tpm
 %bcond_without guile
 Name:           gnutls
-Version:        3.6.10
+Version:        3.6.11.1
 Release:        0
 Summary:        The GNU Transport Layer Security Library
 License:        LGPL-2.1-or-later AND GPL-3.0-or-later