From f038b824192526a0d561ef977bba7c3fb1ed3fab Mon Sep 17 00:00:00 2001 From: Andre McCurdy Date: Mon, 30 Jul 2018 12:07:27 -0700 Subject: gnutls: update 3.3.29 -> 3.3.30 * Version 3.3.30 (released 2018-07-16) ** libgnutls: Corrected infinite loop when an incorrect PIN was provided via pin-value or pin-source. ** gnutls-cli: backported the --sni-hostname option. This allows overriding the hostname advertised to the peer. ** Improved counter-measures for TLS CBC record padding. Kenny Paterson, Eyal Ronen and Adi Shamir reported that the existing counter-measures had certain issues and were insufficient when the attacker has additional access to the CPU cache and performs a chosen-plaintext attack. This affected the legacy CBC ciphersuites. [CVSS: medium] ** The ciphers utilizing HMAC-SHA384 and SHA256 have been removed from the default priority strings. They are not necessary for compatibility or other purpose and provide no advantage over their SHA1 counter-parts, as they all depend on the legacy TLS CBC block mode. ** API and ABI modifications: No changes since last version. Signed-off-by: Andre McCurdy Signed-off-by: Ross Burton --- recipes-support/gnutls/gnutls_3.3.29.bb | 8 -------- recipes-support/gnutls/gnutls_3.3.30.bb | 8 ++++++++ 2 files changed, 8 insertions(+), 8 deletions(-) delete mode 100644 recipes-support/gnutls/gnutls_3.3.29.bb create mode 100644 recipes-support/gnutls/gnutls_3.3.30.bb diff --git a/recipes-support/gnutls/gnutls_3.3.29.bb b/recipes-support/gnutls/gnutls_3.3.29.bb deleted file mode 100644 index 21099eb..0000000 --- a/recipes-support/gnutls/gnutls_3.3.29.bb +++ /dev/null @@ -1,8 +0,0 @@ -require gnutls.inc - -SRC_URI += " \ - file://configure.ac-fix-sed-command.patch \ - file://use-pkg-config-to-locate-zlib.patch \ -" -SRC_URI[md5sum] = "de7a58232d42b1d71baf38a06dc34412" -SRC_URI[sha256sum] = "fa9d13f1bc35b81fac85152906b8d4950f4f5a90d76d5b406c1167728770c94a" diff --git a/recipes-support/gnutls/gnutls_3.3.30.bb b/recipes-support/gnutls/gnutls_3.3.30.bb new file mode 100644 index 0000000..6e9f026 --- /dev/null +++ b/recipes-support/gnutls/gnutls_3.3.30.bb @@ -0,0 +1,8 @@ +require gnutls.inc + +SRC_URI += " \ + file://configure.ac-fix-sed-command.patch \ + file://use-pkg-config-to-locate-zlib.patch \ +" +SRC_URI[md5sum] = "748f4c194a51ca9f2c02d9b7735262c2" +SRC_URI[sha256sum] = "41d70107ead3de2f12390909a05eefc9a88def6cd1f0d90ea82a7dac8b8effee" -- cgit v1.2.3-54-g00ecf