Release 3.6.153.6.15

Signed-off-by: Daiki Ueno <ueno@gnu.org>

3 files changed, 10 insertions, 3 deletions

diff --git a/NEWS b/NEWS
index 982c801237..589e6e79b5 100644
--- a/NEWS
+++ b/NEWS
@@ -5,7 +5,14 @@ Copyright (C) 2000-2016 Free Software Foundation, Inc.
 Copyright (C) 2013-2019 Nikos Mavrogiannopoulos
 See the end for copying conditions.
 
-* Version 3.6.15 (unreleased)
+* Version 3.6.15 (releases 2020-09-04)
+
+** libgnutls: Fixed "no_renegotiation" alert handling at incorrect timing.
+   The server sending a "no_renegotiation" alert in an unexpected timing,
+   followed by an invalid second handshake was able to cause a TLS 1.3 client to
+   crash via a null-pointer dereference. The crash happens in the application's
+   error handling path, where the gnutls_deinit function is called after
+   detecting a handshake failure (#1071).  [GNUTLS-SA-2020-09-04, CVSS: medium]
 
 ** libgnutls: If FIPS self-tests are failed, gnutls_fips140_mode_enabled() now
    indicates that with a false return value (!1306).
diff --git a/configure.ac b/configure.ac
index df954f0209..70ae457751 100644
--- a/configure.ac
+++ b/configure.ac
@@ -23,7 +23,7 @@ dnl Process this file with autoconf to produce a configure script.
 AC_PREREQ(2.63)
 
 dnl when updating version also update LT_REVISION in m4/hooks.m4
-AC_INIT([GnuTLS], [3.6.14], [bugs@gnutls.org])
+AC_INIT([GnuTLS], [3.6.15], [bugs@gnutls.org])
 AC_CONFIG_AUX_DIR([build-aux])
 AC_CONFIG_MACRO_DIRS([m4 src/gl/m4 src/libopts/m4 lib/unistring/m4])
 AC_CANONICAL_HOST
diff --git a/m4/hooks.m4 b/m4/hooks.m4
index 1f83d35f68..1faab6465f 100644
--- a/m4/hooks.m4
+++ b/m4/hooks.m4
@@ -41,7 +41,7 @@ AC_DEFUN([LIBGNUTLS_HOOKS],
   #
   # Interfaces removed:                           AGE=0 (+bump all symbol versions in .map)
   AC_SUBST(LT_CURRENT, 58)
-  AC_SUBST(LT_REVISION, 0)
+  AC_SUBST(LT_REVISION, 1)
   AC_SUBST(LT_AGE, 28)
 
   AC_SUBST(LT_SSL_CURRENT, 27)