NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
22,789 Commits 5 Branches 387 Tags 141 MiB
552399dbf6
Commit Graph

7 Commits

Author SHA1 Message Date
Gustavo Zacarias
552399dbf6 gnutls: security bump to version 3.3.14 
Fixes a two-byte stack overflow in DTLS 0.9 protocol (no CVE assigned
yet).

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
 2015-03-30 17:57:49 +02:00
Gustavo Zacarias
681a90f746 gnutls: bump to version 3.3.13 
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2015-02-26 22:24:24 +01:00
Gustavo Zacarias
becc095282 gnutls: bump to version 3.3.12 
This is the new stable, so switch to it.
Still no dice with nettle 3.0, see:
http://lists.gnutls.org/pipermail/gnutls-devel/2014-June/006977.html
and nettle upstream:
http://lists.lysator.liu.se/pipermail/nettle-bugs/2014/003129.html

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2015-01-20 00:41:55 +01:00
Gustavo Zacarias
733700cff7 gnutls: bump to version 3.2.21 
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
 2014-12-11 19:49:38 +01:00
Gustavo Zacarias
caf2b2ba6b gnutls: security bump to version 3.2.20 
Fixes:
CVE-2014-8564 / GNUTLS-SA-2014-5 - Sean Burford reported that the
encoding of elliptic curves parameters GnuTLS 3 is vulnerable to a
denial of service (heap corruption). It affects clients and servers
which print information about the peer's certificate, e.g., the key ID,
and can be exploited via a specially crafted X.509 certificate.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2014-11-10 14:13:49 +01:00
Gustavo Zacarias
8465d7ecfc gnutls: bump to version 3.2.19 
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2014-10-14 17:27:45 +02:00
Gustavo Zacarias
2e849bd9b6 gnutls: bump to version 3.2.18 
Also add hash, calculated on downloaded file after verifying signature.

[Peter: tweak hash comment]
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 2014-09-18 22:02:09 +02:00