gnutls/gnutls-3.7.1.tar.xz.sig at fdfce5a24a2d4222262cbf91b62aabb54acfb5cc08c45828c793e5223f5d1e53

SHA256

Pedro Monreal Gonzalez 505327d4f8 Accepting request 878624 from home:pmonrealgonzalez:branches:security:tls

- Update to 3.7.1:
    [bsc#1183456, CVE-2021-20232] [bsc#1183457, CVE-2021-20231]
  * Fixed potential use-after-free in sending "key_share" and
    "pre_shared_key" extensions.
  * Fixed a regression in handling duplicated certs in a chain.
  * Fixed sending of session ID in TLS 1.3 middlebox compatibility
    mode. In that mode the client shall always send a non-zero
    session ID to make the handshake resemble the TLS 1.2
    resumption; this was not true in the previous versions.
  * Removed dependency on the external 'fipscheck' package,
    when compiled with --enable-fips140-mode.
  * Added padlock acceleration for AES-192-CBC.
- Remove patches upstream:
  * gnutls-gnutls-cli-debug.patch
  * gnutls-ignore-duplicate-certificates.patch
  * gnutls-test-fixes.patch

OBS-URL: https://build.opensuse.org/request/show/878624
OBS-URL: https://build.opensuse.org/package/show/security:tls/gnutls?expand=0&rev=49

2021-03-15 09:13:41 +00:00

580 B

Raw History

View Raw

580 B Raw History

580 B

Raw History