Accepting request 433003 from Base:System

update to 3.4.15 (forwarded request 432668 from ecsos) OBS-URL: https://build.opensuse.org/request/show/433003 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gnutls?expand=0&rev=94
2016-10-10 14:16:31 +00:00
parent 65cd0f52fa
commit 342e0cae5e
6 changed files with 37 additions and 4 deletions
--- a/gnutls.changes
+++ b/gnutls.changes
@@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Sun Oct  2 16:13:59 UTC 2016 - ecsos@opensuse.org
+
+- GnuTLS 3.4.15:
+  * libgnutls: Corrected the comparison of the serial size in OCSP 
+    response. Previously the OCSP certificate check wouldn't verify 
+    the serial length and could succeed in cases it shouldn't 
+    (GNUTLS-SA-2016-3).
+  * libgnutls: Fixes in gnutls_x509_crt_list_import2, which was
+    ignoring flags if all certificates in the list fit within the
+    initially allocated memory.
+  * libgnutls: Corrected issue which made 
+    gnutls_certificate_get_x509_crt() to return invalid pointers 
+    when returned more than a single certificate.
+  * libgnutls: Fix gnutls_pkcs12_simple_parse to always extract the
+    complete chain.
+  * libgnutls: Added support for decrypting PKCS#8 files which use 
+    the HMAC-SHA256 as PRF.
+  * libgnutls: Addressed issue with PKCS#11 signature generation on 
+    ECDSA keys. The signature is now written as unsigned integers 
+    into the DSASignatureValue structure. Previously signed 
+    integers could be written depending on what the underlying 
+    module would produce. Addresses #122.
+- fix build error for 13.2, 42.1 and 42.2
+
 -------------------------------------------------------------------
 Sat Jul  9 21:18:21 UTC 2016 - astieger@suse.com