GnuTLS CVE-2009-2730 Patches

Simon Josefsson simon at
Thu Aug 20 16:18:46 CEST 2009

Btw, I just notice a problem with RedHat's patch, it appears to break
OpenPGP connections:

gnutls-cli -p 5556 --priority NORMAL:+CTYPE-OPENPGP:-CTYPE-X509

I get an error:

- The hostname in the certificate does NOT match ''

But this is incorrect, the names do match.

Please test if that command works on your versions, otherwise you will
need this patch too:

I'll write a self-test to check this regression too.


More information about the Gnutls-devel mailing list