[gnutls-devel] GNUTLS-SA-2014-1 / CVE-2014-1959 only affexts 3.[12].x?

Andreas Metzler ametzler at bebt.de
Sat Feb 15 16:15:56 CET 2014


Hello,

http://www.gnutls.org/security.html#GNUTLS-SA-2014-1 says: "Suman Jana
reported a vulnerability that affects the certificate verification
functions of gnutls 3.1.x and gnutls 3.2.x."

Is this correct, are 3.0.x and 2.x not affected?

cu Andreas

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'



More information about the Gnutls-devel mailing list