gnutls-3.6.7-1.1.i586.rpm


Advertisement

Description

gnutls - The GNU Transport Layer Security Library

Property Value
Distribution openSUSE Tumbleweed
Repository openSUSE Oss all
Package filename gnutls-3.6.7-1.1.i586.rpm
Package name gnutls
Package version 3.6.7
Package release 1.1
Package architecture i586
Package type rpm
Category Productivity/Networking/Security
Homepage http://www.gnutls.org/
License LGPL-2.1-or-later AND GPL-3.0-or-later
Maintainer -
Download size 679.57 KB
Installed size 3.15 MB
The GnuTLS library provides a secure layer over a reliable transport
layer. Currently the GnuTLS library implements the proposed standards
of the IETF's TLS working group.

Alternatives

Package Version Architecture Repository
gnutls-3.6.7-1.1.x86_64.rpm 3.6.7 x86_64 openSUSE Oss
gnutls - - -

Requires

Name Value
libc.so.6(GLIBC_2.28) -
libgnutls-dane.so.0 -
libgnutls-dane.so.0(DANE_0_0) -
libgnutls-dane0 = 3.6.7
libgnutls.so.30 -
libgnutls.so.30(GNUTLS_3_4) -
libgnutls.so.30(GNUTLS_3_6_0) -
libgnutls.so.30(GNUTLS_3_6_2) -
libgnutls.so.30(GNUTLS_3_6_3) -
libgnutls.so.30(GNUTLS_3_6_4) -
libgnutls.so.30(GNUTLS_3_6_5) -
libgnutls.so.30(GNUTLS_PRIVATE_3_4) -
libopts.so.25 -
libtasn1.so.6 -
libtasn1.so.6(LIBTASN1_0_3) -

Provides

Name Value
gnutls = 3.6.7-1.1
gnutls(x86-32) = 3.6.7-1.1

Download

Type URL
Mirror widehat.opensuse.org
Binary Package gnutls-3.6.7-1.1.i586.rpm
Source Package gnutls-3.6.7-1.1.src.rpm

Install Howto

Install gnutls rpm package:

# zypper install gnutls

Files

Path
/usr/bin/certtool
/usr/bin/danetool
/usr/bin/gnutls-cli
/usr/bin/gnutls-cli-debug
/usr/bin/gnutls-serv
/usr/bin/ocsptool
/usr/bin/p11tool
/usr/bin/psktool
/usr/bin/srptool
/usr/share/doc/packages/gnutls/AUTHORS
/usr/share/doc/packages/gnutls/ChangeLog
/usr/share/doc/packages/gnutls/NEWS
/usr/share/doc/packages/gnutls/README.md
/usr/share/doc/packages/gnutls/THANKS
/usr/share/doc/packages/gnutls/TODO
/usr/share/licenses/gnutls/LICENSE
/usr/share/locale/cs/LC_MESSAGES/gnutls.mo
/usr/share/locale/de/LC_MESSAGES/gnutls.mo
/usr/share/locale/eo/LC_MESSAGES/gnutls.mo
/usr/share/locale/es/LC_MESSAGES/gnutls.mo
/usr/share/locale/fi/LC_MESSAGES/gnutls.mo
/usr/share/locale/fr/LC_MESSAGES/gnutls.mo
/usr/share/locale/it/LC_MESSAGES/gnutls.mo
/usr/share/locale/nl/LC_MESSAGES/gnutls.mo
/usr/share/locale/pl/LC_MESSAGES/gnutls.mo
/usr/share/locale/pt_BR/LC_MESSAGES/gnutls.mo
/usr/share/locale/sr/LC_MESSAGES/gnutls.mo
/usr/share/locale/sv/LC_MESSAGES/gnutls.mo
/usr/share/locale/uk/LC_MESSAGES/gnutls.mo
/usr/share/locale/vi/LC_MESSAGES/gnutls.mo
/usr/share/locale/zh_CN/LC_MESSAGES/gnutls.mo
/usr/share/man/man1/certtool.1.gz
/usr/share/man/man1/danetool.1.gz
/usr/share/man/man1/gnutls-cli-debug.1.gz
/usr/share/man/man1/gnutls-cli.1.gz
/usr/share/man/man1/gnutls-serv.1.gz
/usr/share/man/man1/ocsptool.1.gz
/usr/share/man/man1/p11tool.1.gz
/usr/share/man/man1/psktool.1.gz
/usr/share/man/man1/srptool.1.gz
/usr/share/man/man1/tpmtool.1.gz

Changelog

2019-04-04 - Jan Engelhardt <jengelh@inai.de>
- Trim useless %if..%endif guards that do not affect the build.
- Fix language errors in description again.
2019-04-04 - Jason Sikes <jsikes@suse.de>
- Update gnutls to 3.6.7
* * libgnutls, gnutls tools: Every gnutls_free() will automatically set
the free'd pointer to NULL. This prevents possible use-after-free and
double free issues. Use-after-free will be turned into NULL dereference.
The counter-measure does not extend to applications using gnutls_free().
* * libgnutls: Fixed a memory corruption (double free) vulnerability in the
certificate verification API. Reported by Tavis Ormandy; addressed with
the change above. [GNUTLS-SA-2019-03-27, #694] [bsc#1130681] (CVE-2019-3829)
* * libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async messages;
Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704] [bsc#1130682] (CVE-2019-3836)
* * libgnutls: enforce key usage limitations on certificates more actively.
Previously we would enforce it for TLS1.2 protocol, now we enforce it
even when TLS1.3 is negotiated, or on client certificates as well. When
an inappropriate for TLS1.3 certificate is seen on the credentials structure
GnuTLS will disable TLS1.3 support for that session (#690).
* * libgnutls: the default number of tickets sent under TLS 1.3 was increased to
two. This makes it easier for clients which perform multiple connections
to the server to use the tickets sent by a default server.
* * libgnutls: enforce the equality of the two signature parameters fields in
a certificate. We were already enforcing the signature algorithm, but there
was a bug in parameter checking code.
* * libgnutls: fixed issue preventing sending and receiving from different
threads when false start was enabled (#713).
* * libgnutls: the flag GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO now implies a writable
session, as non-writeable security officer sessions are undefined in PKCS#11
(#721).
* * libgnutls: no longer send downgrade sentinel in TLS 1.3.
Previously the sentinel value was embedded to early in version
negotiation and was sent even on TLS 1.3. It is now sent only when
TLS 1.2 or earlier is negotiated (#689).
* * gnutls-cli: Added option --logfile to redirect informational messages output.
- Disabled dane support in SLE since dane is not shipped there
- Changed configure script to hardware guile site directory since command-line
option '--with-guile-site-dir=' was removed from the configure script.
* * Added gnutls-3.6.6-set_guile_site_dir.patch
- Modified gnutls-3.6.0-disable-flaky-dtls_resume-test.patch to fix
compilation issues on PPC
2019-02-04 - Vít?zslav ?í?ek <vcizek@suse.com>
- Update to 3.6.6
* * libgnutls: gnutls_pubkey_import_ecc_raw() was fixed to set the number bits
on the public key (#640).
* * libgnutls: Added support for raw public-key authentication as defined in RFC7250.
Raw public-keys can be negotiated by enabling the corresponding certificate
types via the priority strings. The raw public-key mechanism must be explicitly
enabled via the GNUTLS_ENABLE_RAWPK init flag (#26, #280).
* * libgnutls: When on server or client side we are sending no extensions we do
not set an empty extensions field but we rather remove that field competely.
This solves a regression since 3.5.x and improves compatibility of the server
side with certain clients.
* * libgnutls: We no longer mark RSA keys in PKCS#11 tokens as RSA-PSS capable if
the CKA_SIGN is not set (#667).
* * libgnutls: The priority string option %NO_EXTENSIONS was improved to completely
disable extensions at all cases, while providing a functional session. This
also implies that when specified, TLS1.3 is disabled.
* * libgnutls: GNUTLS_X509_NO_WELL_DEFINED_EXPIRATION was marked as deprecated.
The previous definition was non-functional (#609).
- drop no longer needed gnutls-enbale-guile-2.2.patch
- refresh disable-psk-file-test.patch

See Also

Package Description
gnutls-guile-3.6.7-1.1.i586.rpm Guile wrappers for gnutls
gnutls-guile-3.6.7-1.1.x86_64.rpm Guile wrappers for gnutls
go-1.11.5-1.2.i586.rpm A compiled, garbage-collected, concurrent programming language
go-1.11.5-1.2.x86_64.rpm A compiled, garbage-collected, concurrent programming language
go-doc-1.11.5-1.2.i586.rpm Go documentation
go-doc-1.11.5-1.2.x86_64.rpm Go documentation
go-for-it-1.6.3-1.3.i586.rpm A to-do list with built-in productivity timer
go-for-it-1.6.3-1.3.x86_64.rpm A to-do list with built-in productivity timer
go-for-it-lang-1.6.3-1.3.noarch.rpm Translations for package go-for-it
go-md2man-1.0.6+git20160904.a65d4d2-3.2.i586.rpm Tool to converts markdown into man pages
go-md2man-1.0.6+git20160904.a65d4d2-3.2.x86_64.rpm Tool to converts markdown into man pages
go-race-1.11.5-1.2.x86_64.rpm Go runtime race detector
go-tools-1.11+git20190225.e9f45831-2.1.i586.rpm Additional toolsgraphy libraries
go-tools-1.11+git20190225.e9f45831-2.1.x86_64.rpm Additional toolsgraphy libraries
go1.10-1.10.8-1.3.i586.rpm A compiled, garbage-collected, concurrent programming language
Advertisement
Advertisement