On 03/05/14 14:18, Heinz Diehl wrote:
Well.... The article pointed to by poc states....
GnuTLS developers published this bare-bones advisory that urges all users to upgrade to
version 3.2.12. The flaw, formally indexed as CVE-2014-0092, is described by a GnuTLS
developer as "an important (and at the same time embarrassing) bug discovered during
an audit for Red Hat." Debian's advisory is here.
And the links above state....
Bugs Fixed
1069865 - CVE-2014-0092: gnutls: incorrect error handling in certificate verification
(GNUTLS-SA-2014-2)
1071795 - CVE-2014-0092: gnutls: incorrect error handling in certificate verification
(GNUTLS-SA-2014-2) [fedora-all]
So.......
--
Getting tired of non-Fedora discussions and self-serving posts