projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7b64048) | patch
gnutls: security bump to version 3.2.20
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Mon, 10 Nov 2014 12:48:01 +0000 (09:48 -0300)
committerPeter Korsgaard <peter@korsgaard.com>
Mon, 10 Nov 2014 13:13:49 +0000 (14:13 +0100)
commitcaf2b2ba6b1896c6f0d5751fca84d48607497b04
treeaf2cc6ab617bdb017525650a2cc7214e33535f9dtree
parent7b640487366b2d0e0347601634f73948ac76dc27commit | diff
gnutls: security bump to version 3.2.20

Fixes:
CVE-2014-8564 / GNUTLS-SA-2014-5 - Sean Burford reported that the
encoding of elliptic curves parameters GnuTLS 3 is vulnerable to a
denial of service (heap corruption). It affects clients and servers
which print information about the peer's certificate, e.g., the key ID,
and can be exploited via a specially crafted X.509 certificate.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/gnutls/gnutls.hash diff | blob | history
package/gnutls/gnutls.mk diff | blob | history