Bug#540449: gnutls version checking too strict

Simon Josefsson simon at josefsson.org
Thu Aug 13 12:48:38 CEST 2009

Simon Josefsson <simon at josefsson.org> writes:

> Andreas Metzler <ametzler at downhill.at.eu.org> writes:
>> On 2009-08-10 Simon Josefsson <simon at josefsson.org> wrote:
>>> Andreas Metzler <ametzler at downhill.at.eu.org> writes:
>> [...]
>>> > The gnutls 2.8 series will absolutely fail to work if the currently
>>> > installed version of libtasn1 or libgcrypt is not greater or equal
>>> > than the version gnutls was built against. This is much too cautious
>> [...]
>>> Hi.  Just in time for the 2.8.2 release. :-)
>>> I applied it somewhat differently, see:
>>> http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=860605be8f3b344738548ecfe0f1a6e6cb357c0b
>> Thanks for fixing this very quickly.
>> I will try to find time for a (2.8.3, probably ;-) upload tomorrow.
> Right, please wait a day or two for 2.8.3 to avoid the double work.

Now released!

> I think lenny (and etch?) needs upgraded packages, though, for the
> security problem.

I'm working on publishing minimal patches for 2.8.x, which hopefully
won't be that difficult to back-port to 2.6.x or earlier versions.


More information about the Gnutls-devel mailing list