diff options
| author | Simon Josefsson <simon@josefsson.org> | 2008-11-06 08:49:32 +0100 |
|---|---|---|
| committer | Simon Josefsson <simon@josefsson.org> | 2008-11-06 08:49:32 +0100 |
| commit | d1f8decbeedf10f04c488db45c9fbe60e9ae9a9b (patch) | |
| tree | d581b7e68d4c6b8f73b88e13d87efa5d98f8ee01 | |
| parent | df9291523eed14ef9285975597c714d6f095e05f (diff) | |
| download | gnutls-d1f8decbeedf10f04c488db45c9fbe60e9ae9a9b.tar.gz | |
Add.
| -rw-r--r-- | NEWS | 6 |
1 files changed, 6 insertions, 0 deletions
@@ -5,6 +5,12 @@ See the end for copying conditions. * Version 2.6.1 (unreleased) +** libgnutls: Fix X.509 certificate chain validation error. [GNUTLS-SA-2008-3] +The flaw makes it possible for man in the middle attackers (i.e., +active attackers) to assume any server name and trick GNU TLS clients +into trusting that name. Thanks for report and analysis from Martin +von Gagern <Martin.vGagern@gmx.net>. [CVE-2008-4989] + ** libgnutls: Add missing prototype for gnutls_srp_set_prime_bits. Reported by Kevin Quick <quick@sparq.org> in <https://savannah.gnu.org/support/index.php?106454>. |