From 5dd9a55040da54371807471bf3169d7a9a1f527e Mon Sep 17 00:00:00 2001 From: Daiki Ueno Date: Fri, 4 Sep 2020 08:39:00 +0200 Subject: Release 3.6.15 Signed-off-by: Daiki Ueno --- NEWS | 9 ++++++++- configure.ac | 2 +- m4/hooks.m4 | 2 +- 3 files changed, 10 insertions(+), 3 deletions(-) diff --git a/NEWS b/NEWS index 982c801237..589e6e79b5 100644 --- a/NEWS +++ b/NEWS @@ -5,7 +5,14 @@ Copyright (C) 2000-2016 Free Software Foundation, Inc. Copyright (C) 2013-2019 Nikos Mavrogiannopoulos See the end for copying conditions. -* Version 3.6.15 (unreleased) +* Version 3.6.15 (releases 2020-09-04) + +** libgnutls: Fixed "no_renegotiation" alert handling at incorrect timing. + The server sending a "no_renegotiation" alert in an unexpected timing, + followed by an invalid second handshake was able to cause a TLS 1.3 client to + crash via a null-pointer dereference. The crash happens in the application's + error handling path, where the gnutls_deinit function is called after + detecting a handshake failure (#1071). [GNUTLS-SA-2020-09-04, CVSS: medium] ** libgnutls: If FIPS self-tests are failed, gnutls_fips140_mode_enabled() now indicates that with a false return value (!1306). diff --git a/configure.ac b/configure.ac index df954f0209..70ae457751 100644 --- a/configure.ac +++ b/configure.ac @@ -23,7 +23,7 @@ dnl Process this file with autoconf to produce a configure script. AC_PREREQ(2.63) dnl when updating version also update LT_REVISION in m4/hooks.m4 -AC_INIT([GnuTLS], [3.6.14], [bugs@gnutls.org]) +AC_INIT([GnuTLS], [3.6.15], [bugs@gnutls.org]) AC_CONFIG_AUX_DIR([build-aux]) AC_CONFIG_MACRO_DIRS([m4 src/gl/m4 src/libopts/m4 lib/unistring/m4]) AC_CANONICAL_HOST diff --git a/m4/hooks.m4 b/m4/hooks.m4 index 1f83d35f68..1faab6465f 100644 --- a/m4/hooks.m4 +++ b/m4/hooks.m4 @@ -41,7 +41,7 @@ AC_DEFUN([LIBGNUTLS_HOOKS], # # Interfaces removed: AGE=0 (+bump all symbol versions in .map) AC_SUBST(LT_CURRENT, 58) - AC_SUBST(LT_REVISION, 0) + AC_SUBST(LT_REVISION, 1) AC_SUBST(LT_AGE, 28) AC_SUBST(LT_SSL_CURRENT, 27) -- cgit v1.2.1