openKylin gnutls28 package

Change logs for gnutls28 source package in Yangtze V1.0

  • gnutls28 (3.6.13-ok12.1) yangtze; urgency=medium

  * remove rv64g do nocheck and update debian/controls

 -- root <email address hidden>  Mon, 11 Mar 2024 10:08:51 +0000
  • gnutls28 (3.6.13-ok12) yangtze; urgency=medium

  * if arch == rv64g nocheck

 -- root <email address hidden>  Thu, 29 Feb 2024 07:28:46 +0000
  • gnutls28 (3.6.13-ok11) yangtze; urgency=medium

  * Update package info

 -- zhouganqing <email address hidden>  Mon, 04 Sep 2023 16:21:58 +0800
  • gnutls28 (3.6.13-ok10) yangtze; urgency=medium

  * Corwin-Song  CVE-2023-0361 安全更新:GnuTLS存在安全漏洞,该漏洞源于可以通过网络恢复以RSA密文加密的密钥。攻击者利用该漏洞可以解密应用程序数据。

 -- songjuntao <email address hidden>  Fri, 26 May 2023 18:44:05 +0800
  • gnutls28 (3.6.13-ok9) yangtze; urgency=medium

  * leocheng_bupt_0 CVE-2022-2509 安全更新:GnuTLS是一款免费的用于实现SSL、TLS和DTLS协议的安全通信库。GnuTLS 存在资源管理错误漏洞,该漏洞源于在gnutls_pkcs7_verify过程中双倍释放。

 -- chengyingyi <email address hidden>  Wed, 29 Mar 2023 22:00:01 +0800
  • gnutls28 (3.6.13-ok8) yangtze; urgency=medium

  * leocheng_bupt_0 CVE-2021-4209 安全更新:GnuTLS是一款免费的用于实现SSL、TLS和DTLS协议的安全通信库。GnuTLS 存在安全漏洞,该漏洞源于MD_UPDATE中的空指针解引用。

 -- chengyingyi <email address hidden>  Mon, 20 Mar 2023 23:11:18 +0800
  • gnutls28 (3.6.13-ok6) yangtze; urgency=low

  * aichijuzi-one CVE-2021-20231 安全更新:客户端发送 key_share 扩展时出现的 use after free 问题可能会导致内存损坏和其他后果.

 -- zhangce <email address hidden>  Thu, 16 Mar 2023 22:28:31 +0800
  • gnutls28 (3.6.13-ok5) yangtze; urgency=medium

  * chen-yu0501 repair CVE-2020-24659

 -- chenyu <email address hidden>  Mon, 13 Mar 2023 09:53:30 +0800
  • gnutls28 (3.6.13-ok4) yangtze; urgency=medium

  * xiaoyi-camellia CVE-2020-13777 安全更新:GnuTLS 3.6.14版本中存在加密问题漏洞。攻击者可通过实施中间人攻击利用该漏洞绕过TLS 1.3版本的身份验证并恢复TLS 1.2版本的先前会话。

 -- chenjy <email address hidden>  Thu, 09 Mar 2023 10:44:57 +0800
  • gnutls28 (3.6.13-ok3) yangtze; urgency=medium

  * update version info

 -- luzhiping <email address hidden>  Mon, 22 Aug 2022 13:58:17 +0800
  • gnutls28 (3.6.13-ok2) yangtze; urgency=medium

  * testpkcs11: use datefudge to allow testing with expired certificates.
  * update status-request-revoked.c test so that it passes and the package builds.

 -- luzhiping <email address hidden>  Wed, 25 May 2022 16:50:56 +0800