rpms/gnutls/F-11 gnutls-2.6.6-cve-2009-2730.patch, 1.1, 1.2 gnutls.spec, 1.44, 1.45
Tomáš Mráz
tmraz at fedoraproject.org
Wed Sep 23 18:27:10 UTC 2009
Author: tmraz
Update of /cvs/pkgs/rpms/gnutls/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv3885
Modified Files:
gnutls-2.6.6-cve-2009-2730.patch gnutls.spec
Log Message:
* Wed Sep 23 2009 Tomas Mraz <tmraz at redhat.com> 2.6.6-3
- fix handling of hostname in openpgp certificates
gnutls-2.6.6-cve-2009-2730.patch:
gnutls_str.c | 24 +++++++++++++++---------
gnutls_str.h | 2 +-
openpgp/pgp.c | 2 +-
x509/common.c | 38 ++++++++++++++++++++++----------------
x509/output.c | 31 +++++++++++++++++++++++++++++++
x509/rfc2818_hostname.c | 6 +++---
6 files changed, 73 insertions(+), 30 deletions(-)
Index: gnutls-2.6.6-cve-2009-2730.patch
===================================================================
RCS file: /cvs/pkgs/rpms/gnutls/F-11/gnutls-2.6.6-cve-2009-2730.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -p -r1.1 -r1.2
--- gnutls-2.6.6-cve-2009-2730.patch 14 Aug 2009 11:59:03 -0000 1.1
+++ gnutls-2.6.6-cve-2009-2730.patch 23 Sep 2009 18:27:09 -0000 1.2
@@ -76,7 +76,7 @@ diff -up gnutls-2.6.6/lib/openpgp/pgp.c.
if (ret == 0)
{
- if (_gnutls_hostname_compare (dnsname, hostname))
-+ if (_gnutls_hostname_compare (dnsname, dnsnamesize, hostname))
++ if (_gnutls_hostname_compare (dnsname, dnsnamesize-1, hostname))
return 1;
}
}
Index: gnutls.spec
===================================================================
RCS file: /cvs/pkgs/rpms/gnutls/F-11/gnutls.spec,v
retrieving revision 1.44
retrieving revision 1.45
diff -u -p -r1.44 -r1.45
--- gnutls.spec 14 Aug 2009 11:59:03 -0000 1.44
+++ gnutls.spec 23 Sep 2009 18:27:10 -0000 1.45
@@ -1,7 +1,7 @@
Summary: A TLS protocol implementation
Name: gnutls
Version: 2.6.6
-Release: 2%{?dist}
+Release: 3%{?dist}
# The libgnutls library is LGPLv2+, utilities and remaining libraries are GPLv3+
License: GPLv3+ and LGPLv2+
Group: System Environment/Libraries
@@ -151,6 +151,9 @@ fi
%{_datadir}/guile/site/gnutls.scm
%changelog
+* Wed Sep 23 2009 Tomas Mraz <tmraz at redhat.com> 2.6.6-3
+- fix handling of hostname in openpgp certificates
+
* Fri Aug 14 2009 Tomas Mraz <tmraz at redhat.com> 2.6.6-2
- fix CVE-2009-2730 - handling of NUL chars in certificate
CNs and SANs
More information about the fedora-extras-commits
mailing list