From: Simon Josefsson Date: Thu, 13 Aug 2009 09:25:21 +0000 (+0200) Subject: Fix. X-Git-Tag: gnutls_2_9_2~8 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=57c65b2d6ddfbc6abff98dea99b33010414607d8;p=thirdparty%2Fgnutls.git Fix. --- diff --git a/NEWS b/NEWS index 29e60d8a1f..b02a7c5e79 100644 --- a/NEWS +++ b/NEWS @@ -18,7 +18,7 @@ attack, and the attacker reveals his tracks by applying for a certificate at the CA. It does not apply to client authenticated TLS sessions. Research presented independently by Dan Kaminsky and Moxie Marlinspike at BlackHat09. Thanks to Tomas Hoger -for providing one part of the patch. [GNUTLS-SA-2009-4]. +for providing one part of the patch. [GNUTLS-SA-2009-4] [CVE-2009-2730]. ** libgnutls: Fix rare failure in gnutls_x509_crt_import. The function may fail incorrectly when an earlier certificate was