Updated gnutls packages fix security vulnerability
Publication date: 16 Feb 2014Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-1959
Description
Suman Jana reported a vulnerability that affects the certificate verification functions of gnutls 3.1.x and gnutls 3.2.x. A version 1 intermediate certificate will be considered as a CA certificate by default (something that deviates from the documented behavior) (CVE-2014-1959).
References
SRPMS
4/core
- gnutls-3.2.7-1.1.mga4
3/core
- gnutls-3.1.16-1.1.mga3