Overview Repositories Revisions Requests Users Attributes Meta

The GNU Transport Layer Security Library

Edit Package gnutls

The GnuTLS project aims to develop a library that provides a secure
layer over a reliable transport layer. Currently the GnuTLS library
implements the proposed standards of the IETF's TLS working group.

  • Download package
  • osc -A https://api.opensuse.org checkout SUSE:SLE-15-SP2:GA/gnutls && cd $_
  • Create Badge
Refresh
Refresh
Source Files
Filename Size Changed
0001-Vendor-in-XTS-functionality-from-Nettle.patch 0000024707 24.1 KB
0001-_gnutls_verify_crt_status-apply-algorithm-checks-to-.patch 0000010871 10.6 KB
0002-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch 0000007361 7.19 KB
0003-x509-trigger-fallback-verification-path-when-cert-is.patch 0000001857 1.81 KB
0004-tests-add-test-case-for-certificate-chain-supersedin.patch 0000006924 6.76 KB
baselibs.conf 0000000287 287 Bytes
disable-psk-file-test.patch 0000005791 5.66 KB
gnutls-3.5.11-skip-trust-store-tests.patch 0000001002 1002 Bytes
gnutls-3.6.0-disable-flaky-dtls_resume-test.patch 0000001485 1.45 KB
gnutls-3.6.7-SUSE_SLE15_guile_site_directory.patch 0000000541 541 Bytes
gnutls-3.6.7-fips-backport_dont_truncate_output_IV.patch 0000000678 678 Bytes
gnutls-3.6.7-fips-rsa-4096.patch 0000001304 1.27 KB
gnutls-3.6.7-fips_DH_ECDH_key_tests.patch 0000001442 1.41 KB
gnutls-3.6.7.tar.xz 0008153728 7.78 MB
gnutls-3.6.7.tar.xz.sig 0000000310 310 Bytes
gnutls-CVE-2020-11501.patch 0000001253 1.22 KB
gnutls-CVE-2020-13777.patch 0000002191 2.14 KB
gnutls-fips_XTS_key_check.patch 0000001981 1.93 KB
gnutls-fips_mode_enabled.patch 0000001535 1.5 KB
gnutls.changes 0000161180 157 KB
gnutls.keyring 0000107212 105 KB
gnutls.spec 0000012007 11.7 KB
Latest Revision
Gustavo Yokoyama Ribeiro's avatar Gustavo Yokoyama Ribeiro (gyribeiro) committed (revision 2) 
Urgent fix for CVE-2020-13777 for SP2.

- GNUTLS-SA-2020-06-03 (Fixed insecure session ticket key construction)
  The TLS server would not bind the session ticket encryption key with a
  value supplied by the application until the initial key rotation, allowing
  attacker to bypass authentication in TLS 1.3 and recover previous
  conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777)
  * add patches:
    + gnutls-CVE-2020-13777.patch
- Fixed handling of certificate chain with cross-signed intermediate
  CA certificates (#1008). (bsc#1172461)
  * add patches:
    +  0001-_gnutls_verify_crt_status-apply-algorithm-checks-to-.patch
    +  0002-_gnutls_pkcs11_verify_crt_status-check-validity-agai.patch
    +  0003-x509-trigger-fallback-verification-path-when-cert-is.patch
    +  0004-tests-add-test-case-for-certificate-chain-supersedin.patch
Comments 0
openSUSE Build Service is sponsored by
Places