fix CVE-2024-12243
Signed-off-by: xuraoqing <xuraoqing@huawei.com>
This commit is contained in:
xuraoqing
parent
b933a7630c
commit
de49e5f140
File diff suppressed because it is too large
Load Diff
@ -1,6 +1,6 @@
|
|||||||
Name: gnutls
|
Name: gnutls
|
||||||
Version: 3.8.2
|
Version: 3.8.2
|
||||||
Release: 4
|
Release: 5
|
||||||
Summary: The GNU Secure Communication Protocol Library
|
Summary: The GNU Secure Communication Protocol Library
|
||||||
|
|
||||||
License: LGPLv2.1+ and GPLv3+
|
License: LGPLv2.1+ and GPLv3+
|
||||||
@ -13,6 +13,7 @@ Patch1: backport-CVE-2024-0553-rsa-psk-minimize-branching-after-decryption.patch
|
|||||||
Patch2: backport-CVE-2024-0567-x509-detect-loop-in-certificate-chain.patch
|
Patch2: backport-CVE-2024-0567-x509-detect-loop-in-certificate-chain.patch
|
||||||
Patch3: backport-fix-CVE-2024-28834-nettle-avoid-normalization-of-mpz_t-in-deterministic.patch
|
Patch3: backport-fix-CVE-2024-28834-nettle-avoid-normalization-of-mpz_t-in-deterministic.patch
|
||||||
Patch4: backport-fix-CVE-2024-28835-gnutls_x509_trust_list_verify_crt2-remove-length-lim.patch
|
Patch4: backport-fix-CVE-2024-28835-gnutls_x509_trust_list_verify_crt2-remove-length-lim.patch
|
||||||
|
Patch5: backport-CVE-2024-12243-x509-optimize-name-constraints-processing.patch
|
||||||
|
|
||||||
%bcond_without dane
|
%bcond_without dane
|
||||||
%bcond_with guile
|
%bcond_with guile
|
||||||
@ -245,6 +246,9 @@ make check %{?_smp_mflags}
|
|||||||
%endif
|
%endif
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Thu Feb 13 2025 xuraoqing <xuraoqing@huawei.com> - 3.8.2-5
|
||||||
|
- fix CVE-2024-12243
|
||||||
|
|
||||||
* Fri Mar 22 2024 wangyaoyong <yaoyong.oerv@isrc.iscas.ac.cn> - 3.8.2-4
|
* Fri Mar 22 2024 wangyaoyong <yaoyong.oerv@isrc.iscas.ac.cn> - 3.8.2-4
|
||||||
- support change CC to compile with clang
|
- support change CC to compile with clang
|
||||||
|
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user