The GNU Transport Layer Security Library
The GnuTLS project aims to develop a library that provides a secure
layer over a reliable transport layer. Currently the GnuTLS library
implements the proposed standards of the IETF's TLS working group.
- Developed at security:tls
- Sources inherited from project openSUSE:Factory
-
9
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Backports:SLE-15-SP4:SLECandidates/gnutls && cd $_
- Create Badge
Refresh
Refresh
Source Files
Filename | Size | Changed |
---|---|---|
baselibs.conf | 0000000147 147 Bytes | |
gnutls-3.5.11-skip-trust-store-tests.patch | 0000001002 1002 Bytes | |
gnutls-3.6.6-set_guile_site_dir.patch | 0000000663 663 Bytes | |
gnutls-3.7.6.tar.xz | 0006338276 6.04 MB | |
gnutls-3.7.6.tar.xz.sig | 0000000685 685 Bytes | |
gnutls-FIPS-PBKDF2-KAT-requirements.patch | 0000000919 919 Bytes | |
gnutls-FIPS-TLS_KDF_selftest.patch | 0000001146 1.12 KB | |
gnutls-FIPS-disable-failing-tests.patch | 0000000968 968 Bytes | |
gnutls.changes | 0000191716 187 KB | |
gnutls.keyring | 0000110058 107 KB | |
gnutls.spec | 0000011583 11.3 KB |
Revision 139 (latest revision is 155)
Dominique Leuenberger (dimstar_suse)
accepted
request 979801
from
Marcus Meissner (msmeissn)
(revision 139)
- Update to version 3.7.6: * libgnutls: Fixed invalid write when gnutls_realloc_zero() is called with new_size < old_size. This bug caused heap corruption when gnutls_realloc_zero() has been set as gmp reallocfunc. * Remove gnutls-3.7.5-fix-gnutls_realloc_zero.patch: Fixed upstream. - Add gnutls-3.7.5-fix-gnutls_realloc_zero.patch: Fix memory corruption in gnutls_realloc_zero (gl#gnutls/gnutls#1367, boo#1199929). - update to 3.7.5: * add options disable session ticket usage in TLS 1.2 because it does not provide forward secrecy * For TLS 1.3 where session tickets do provide forward secrecy, the PFS priority string now only disables session tickets in TLS 1.2. * Future backward incompatibility: in the next major release of GnuTLS those flag and modifier are planned to be removed * gnutls-cli, gnutls-serv: Channel binding for printing information has been changed from tls-unique to tls-exporter as tls-unique is not supported in TLS 1.3. * Certificate sanity checks has been enhanced to make gnutls more RFC 5280 compliant: * Removed 3DES from FIPS approved algorithms * Optimized support for AES-SIV-CMAC algorithms * libgnutls: HKDF and AES-GCM algorithms are now approved in FIPS-140 mode when used in TLS (forwarded request 979523 from 1Antoine1)
Comments 0