Bug#540449: gnutls version checking too strict
Simon Josefsson
simon at josefsson.org
Thu Aug 13 12:48:38 CEST 2009
Simon Josefsson <simon at josefsson.org> writes:
> Andreas Metzler <ametzler at downhill.at.eu.org> writes:
>
>> On 2009-08-10 Simon Josefsson <simon at josefsson.org> wrote:
>>> Andreas Metzler <ametzler at downhill.at.eu.org> writes:
>> [...]
>>> > The gnutls 2.8 series will absolutely fail to work if the currently
>>> > installed version of libtasn1 or libgcrypt is not greater or equal
>>> > than the version gnutls was built against. This is much too cautious
>> [...]
>>> Hi. Just in time for the 2.8.2 release. :-)
>>
>>> I applied it somewhat differently, see:
>>> http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=860605be8f3b344738548ecfe0f1a6e6cb357c0b
>>
>> Thanks for fixing this very quickly.
>>
>> I will try to find time for a (2.8.3, probably ;-) upload tomorrow.
>
> Right, please wait a day or two for 2.8.3 to avoid the double work.
Now released!
> I think lenny (and etch?) needs upgraded packages, though, for the
> security problem.
I'm working on publishing minimal patches for 2.8.x, which hopefully
won't be that difficult to back-port to 2.6.x or earlier versions.
/Simon
More information about the Gnutls-devel
mailing list