rpms/gnutls/F-11 gnutls-2.6.6-cve-2009-2730.patch, 1.1, 1.2 gnutls.spec, 1.44, 1.45

Tomáš Mráz tmraz at fedoraproject.org
Wed Sep 23 18:27:10 UTC 2009 

Author: tmraz

Update of /cvs/pkgs/rpms/gnutls/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv3885

Modified Files:
	gnutls-2.6.6-cve-2009-2730.patch gnutls.spec 
Log Message:
* Wed Sep 23 2009 Tomas Mraz <tmraz at redhat.com> 2.6.6-3
- fix handling of hostname in openpgp certificates


gnutls-2.6.6-cve-2009-2730.patch:
 gnutls_str.c            |   24 +++++++++++++++---------
 gnutls_str.h            |    2 +-
 openpgp/pgp.c           |    2 +-
 x509/common.c           |   38 ++++++++++++++++++++++----------------
 x509/output.c           |   31 +++++++++++++++++++++++++++++++
 x509/rfc2818_hostname.c |    6 +++---
 6 files changed, 73 insertions(+), 30 deletions(-)

Index: gnutls-2.6.6-cve-2009-2730.patch
===================================================================
RCS file: /cvs/pkgs/rpms/gnutls/F-11/gnutls-2.6.6-cve-2009-2730.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -p -r1.1 -r1.2
--- gnutls-2.6.6-cve-2009-2730.patch	14 Aug 2009 11:59:03 -0000	1.1
+++ gnutls-2.6.6-cve-2009-2730.patch	23 Sep 2009 18:27:09 -0000	1.2
@@ -76,7 +76,7 @@ diff -up gnutls-2.6.6/lib/openpgp/pgp.c.
        if (ret == 0)
  	{
 -	  if (_gnutls_hostname_compare (dnsname, hostname))
-+	  if (_gnutls_hostname_compare (dnsname, dnsnamesize, hostname))
++	  if (_gnutls_hostname_compare (dnsname, dnsnamesize-1, hostname))
  	    return 1;
  	}
      }


Index: gnutls.spec
===================================================================
RCS file: /cvs/pkgs/rpms/gnutls/F-11/gnutls.spec,v
retrieving revision 1.44
retrieving revision 1.45
diff -u -p -r1.44 -r1.45
--- gnutls.spec	14 Aug 2009 11:59:03 -0000	1.44
+++ gnutls.spec	23 Sep 2009 18:27:10 -0000	1.45
@@ -1,7 +1,7 @@
 Summary: A TLS protocol implementation
 Name: gnutls
 Version: 2.6.6
-Release: 2%{?dist}
+Release: 3%{?dist}
 # The libgnutls library is LGPLv2+, utilities and remaining libraries are GPLv3+
 License: GPLv3+ and LGPLv2+
 Group: System Environment/Libraries
@@ -151,6 +151,9 @@ fi
 %{_datadir}/guile/site/gnutls.scm
 
 %changelog
+* Wed Sep 23 2009 Tomas Mraz <tmraz at redhat.com> 2.6.6-3
+- fix handling of hostname in openpgp certificates
+
 * Fri Aug 14 2009 Tomas Mraz <tmraz at redhat.com> 2.6.6-2
 - fix CVE-2009-2730 - handling of NUL chars in certificate
   CNs and SANs

More information about the fedora-extras-commits mailing list