kpriv
/
pkgsrc
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

gnutls: updated to 3.8.4 

Version 3.8.4 (released 2024-03-18)

** libgnutls: RSA-OAEP encryption scheme is now supported
   To use it with an unrestricted RSA private key, one would need to
   initialize a gnutls_x509_spki_t object with necessary parameters
   for RSA-OAEP and attach it to the private key. It is also possible
   to import restricted private keys if they are stored in PKCS#8
   format.

** libgnutls: Fix side-channel in the deterministic ECDSA.
   [GNUTLS-SA-2023-12-04, CVSS: medium] [CVE-2024-28834]

** libgnutls: Fixed a bug where certtool crashed when verifying a certificate
   chain with more than 16 certificates.
   [GNUTLS-SA-2024-01-23, CVSS: medium] [CVE-2024-28835]

** libgnutls: Compression libraries are now loaded dynamically as needed
   instead of all being loaded during gnutls library initialization.
   As a result, the library initialization should be faster.

** build: The gnutls library can now be linked with the static library
   of GMP.  Note that in order for this to work libgmp.a needs to be
   compiled with -fPIC and libhogweed in Nettle also has to be linked
   to the static library of GMP.  This can be used to prevent custom
   memory allocators from being overriden by other applications.
This commit is contained in:
adam 2024-03-21 06:08:38 +00:00
parent 26e38c1ce0
commit 9646683007
3 changed files with 9 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
security/gnutls/Makefile
View File

@ -1,6 +1,6 @@
# $NetBSD: Makefile,v 1.246 2024/01/17 20:23:05 adam Exp $
# $NetBSD: Makefile,v 1.247 2024/03/21 06:08:38 adam Exp $
DISTNAME= gnutls-3.8.3
DISTNAME= gnutls-3.8.4
CATEGORIES= security devel
MASTER_SITES= https://www.gnupg.org/ftp/gcrypt/gnutls/v${PKGVERSION_NOREV:R}/
EXTRACT_SUFX= .tar.xz

4
security/gnutls/PLIST
View File

@ -1,4 +1,4 @@
@comment $NetBSD: PLIST,v 1.80 2023/11/16 12:31:11 adam Exp $
@comment $NetBSD: PLIST,v 1.81 2024/03/21 06:08:38 adam Exp $
bin/certtool
bin/gnutls-cli
bin/gnutls-cli-debug
@ -1208,8 +1208,10 @@ man/man3/gnutls_x509_rdn_get2.3
man/man3/gnutls_x509_rdn_get_by_oid.3
man/man3/gnutls_x509_rdn_get_oid.3
man/man3/gnutls_x509_spki_deinit.3
man/man3/gnutls_x509_spki_get_rsa_oaep_params.3
man/man3/gnutls_x509_spki_get_rsa_pss_params.3
man/man3/gnutls_x509_spki_init.3
man/man3/gnutls_x509_spki_set_rsa_oaep_params.3
man/man3/gnutls_x509_spki_set_rsa_pss_params.3
man/man3/gnutls_x509_tlsfeatures_add.3
man/man3/gnutls_x509_tlsfeatures_check_crt.3

8
security/gnutls/distinfo
View File

@ -1,6 +1,6 @@
$NetBSD: distinfo,v 1.160 2024/01/17 20:23:05 adam Exp $
$NetBSD: distinfo,v 1.161 2024/03/21 06:08:38 adam Exp $
BLAKE2s (gnutls-3.8.3.tar.xz) = bd0ccb51008095555b5a93c53cbf30e51df5a61ed4b14c81e9952b608458b1ae
SHA512 (gnutls-3.8.3.tar.xz) = 74eddba01ce4c2ffdca781c85db3bb52c85f1db3c09813ee2b8ceea0608f92ca3912fd9266f55deb36a8ba4d01802895ca5d5d219e7d9caec45e1a8534e45a84
Size (gnutls-3.8.3.tar.xz) = 6463720 bytes
BLAKE2s (gnutls-3.8.4.tar.xz) = b6849ece462ad2ee2331760ff5743ee9dabb40dcb133ca0a7e3615f28bf0048f
SHA512 (gnutls-3.8.4.tar.xz) = af748610392b7eec8a6294d28d088f323450207cdcda1aa2138a0fd71023994c662f7aff72b2b3cd888e7b770750611981c2cde5f2ddc45f852fc0034cdebaff
Size (gnutls-3.8.4.tar.xz) = 6487520 bytes
SHA1 (patch-configure) = 866d8a365b8338348230e47518788f494279b139