* SECURITY: gnutls
@ 2011-10-16 18:49 Yaakov (Cygwin/X)
2011-10-18 0:45 ` Chris Sutcliffe
0 siblings, 1 reply; 4+ messages in thread
From: Yaakov (Cygwin/X) @ 2011-10-16 18:49 UTC (permalink / raw)
To: cygwin-apps
Dr. Volker Zell,
gnutls 2.8.6 is susceptible to CVE-2009-3555. This has been fixed since
2.10.0, but the current stable releases are 2.12.11 (ABI-compatible with
2.8.6) and 3.0.4 (which breaks ABI compatibility). For now, please
release 2.12.11 ASAP for all the apps currently dependent on
libgnutls26.
Yaakov
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: SECURITY: gnutls
2011-10-16 18:49 SECURITY: gnutls Yaakov (Cygwin/X)
@ 2011-10-18 0:45 ` Chris Sutcliffe
2011-10-18 7:53 ` Corinna Vinschen
2011-10-18 17:00 ` Dr. Volker Zell
0 siblings, 2 replies; 4+ messages in thread
From: Chris Sutcliffe @ 2011-10-18 0:45 UTC (permalink / raw)
To: cygwin-apps
On 16 October 2011 14:49, Yaakov (Cygwin/X) wrote:
> Dr. Volker Zell,
>
> gnutls 2.8.6 is susceptible to CVE-2009-3555. This has been fixed since
> 2.10.0, but the current stable releases are 2.12.11 (ABI-compatible with
> 2.8.6) and 3.0.4 (which breaks ABI compatibility). For now, please
> release 2.12.11 ASAP for all the apps currently dependent on
> libgnutls26.
Is Dr. Volker Zell still active? The last post I can find from him
was from June of last year:
http://sourceware.org/ml/cygwin/2010-06/msg00009.html
Chris
--
Chris Sutcliffe
http://emergedesktop.org
http://www.google.com/profiles/ir0nh34d
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: SECURITY: gnutls
2011-10-18 0:45 ` Chris Sutcliffe
@ 2011-10-18 7:53 ` Corinna Vinschen
2011-10-18 17:00 ` Dr. Volker Zell
1 sibling, 0 replies; 4+ messages in thread
From: Corinna Vinschen @ 2011-10-18 7:53 UTC (permalink / raw)
To: cygwin-apps; +Cc: Dr. Volker Zell
On Oct 17 20:45, Chris Sutcliffe wrote:
> On 16 October 2011 14:49, Yaakov (Cygwin/X) wrote:
> > Dr. Volker Zell,
> >
> > gnutls 2.8.6 is susceptible to CVE-2009-3555. Â This has been fixed since
> > 2.10.0, but the current stable releases are 2.12.11 (ABI-compatible with
> > 2.8.6) and 3.0.4 (which breaks ABI compatibility). Â For now, please
> > release 2.12.11 ASAP for all the apps currently dependent on
> > libgnutls26.
>
> Is Dr. Volker Zell still active? The last post I can find from him
> was from June of last year:
>
> http://sourceware.org/ml/cygwin/2010-06/msg00009.html
I had a short mail exchange with Volker in August. He had some private
problems to deal with. He wrote he would catch up at one point.
Volker, I CCed you so you can chime in, ok?
Thanks,
Corinna
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Project Co-Leader cygwin AT cygwin DOT com
Red Hat
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: SECURITY: gnutls
2011-10-18 0:45 ` Chris Sutcliffe
2011-10-18 7:53 ` Corinna Vinschen
@ 2011-10-18 17:00 ` Dr. Volker Zell
1 sibling, 0 replies; 4+ messages in thread
From: Dr. Volker Zell @ 2011-10-18 17:00 UTC (permalink / raw)
To: cygwin-apps
>>>>> Chris Sutcliffe writes:
> On 16 October 2011 14:49, Yaakov (Cygwin/X) wrote:
>> Dr. Volker Zell,
>>
>> gnutls 2.8.6 is susceptible to CVE-2009-3555. Â This has been fixed since
>> 2.10.0, but the current stable releases are 2.12.11 (ABI-compatible with
>> 2.8.6) and 3.0.4 (which breaks ABI compatibility). Â For now, please
>> release 2.12.11 ASAP for all the apps currently dependent on
>> libgnutls26.
> Is Dr. Volker Zell still active? The last post I can find from him
> was from June of last year:
> http://sourceware.org/ml/cygwin/2010-06/msg00009.html
I'm about to upload...but libtasn1 first.
> Chris
Ciao
Volker
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2011-10-18 17:00 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-10-16 18:49 SECURITY: gnutls Yaakov (Cygwin/X)
2011-10-18 0:45 ` Chris Sutcliffe
2011-10-18 7:53 ` Corinna Vinschen
2011-10-18 17:00 ` Dr. Volker Zell
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).