Subject: CVS commit: [pkgsrc-2009Q1] pkgsrc/security/gnutls
From: S.P.Zeidler
Date: 2009-05-06 11:34:11
Message id: 20090506093411.7C42B175D0@cvs.netbsd.org

Log Message:
Pullup ticket 2756 - requested by tnn
Security fix

Revisions pulled up:
- pkgsrc/security/gnutls/Makefile		1.80
- pkgsrc/security/gnutls/distinfo		1.54

   Module Name:	pkgsrc
   Committed By:	wiz
   Date:		Mon Apr 20 13:11:57 UTC 2009

   Modified Files:
   	pkgsrc/security/gnutls: Makefile distinfo

   Log Message:
   Update to 2.6.5. Update commented out LICENSE (needs two).

   * Version 2.6.5 (released 2009-04-11)

   ** libgnutls: Added %SSL3_RECORD_VERSION priority string that allows to
   specify the client hello message record version. Used to overcome buggy
   TLS servers. Report by Martin von Gagern.

   ** GnuTLS no longer uses the libtasn1-config script to find libtasn1.
   Libtasn1 0.3.4 or later is required.  This is to align with the
   upcoming libtasn1 v2.0 release that doesn't have a libtasn1-script.

   ** API and ABI modifications:
   No changes since last version.

   To generate a diff of this commit:
   cvs rdiff -u -r1.77 -r1.78 pkgsrc/security/gnutls/Makefile
   cvs rdiff -u -r1.52 -r1.53 pkgsrc/security/gnutls/distinfo

   Module Name:	pkgsrc
   Committed By:	zafer
   Date:		Fri May  1 13:49:07 UTC 2009

   Modified Files:
   	pkgsrc/security/gnutls: Makefile

   Log Message:
   replace non working mirrors with working ones.

   To generate a diff of this commit:
   cvs rdiff -u -r1.78 -r1.79 pkgsrc/security/gnutls/Makefile

   Module Name:	pkgsrc
   Committed By:	tnn
   Date:		Sat May  2 20:04:33 UTC 2009

   Modified Files:
   	pkgsrc/security/gnutls: Makefile distinfo

   Log Message:
   Update to gnutls-2.6.6.

   * Version 2.6.6 (released 2009-04-30)

   libgnutls: Corrected double free on signature verification failure.
     Reported by Miroslav Kratochvil.  See the advisory
     for more details.  [GNUTLS-SA-2009-1] [CVE-2009-1415]

   libgnutls: Fix DSA key generation.
     Noticed when investigating the previous GNUTLS-SA-2009-1 problem.  All
     DSA keys generated using GnuTLS 2.6.x are corrupt.  See the advisory
     for more details.  [GNUTLS-SA-2009-2] [CVE-2009-1416]

   To generate a diff of this commit:
   cvs rdiff -u -r1.79 -r1.80 pkgsrc/security/gnutls/Makefile
   cvs rdiff -u -r1.53 -r1.54 pkgsrc/security/gnutls/distinfo

Files:
RevisionActionfile
1.77.2.1modifypkgsrc/security/gnutls/Makefile
1.52.2.1modifypkgsrc/security/gnutls/distinfo