Univention Bugzilla – Bug 51704
glib-networking: Multiple issues (4.4)
Last modified: 2020-07-29 16:50:38 CEST
New Debian glib-networking 2.50.0-1+deb9u1 fixes: This update addresses the following issue: * GTlsClientConnection silently ignores unset server identity (CVE-2020-13645)
--- mirror/ftp/4.3/unmaintained/4.3-0/source/glib-networking_2.50.0-1.dsc +++ apt/ucs_4.4-0-errata4.4-5/source/glib-networking_2.50.0-1+deb9u1.dsc @@ -1,3 +1,9 @@ +2.50.0-1+deb9u1 [Tue, 07 Jul 2020 16:57:37 +0200] Emilio Pozuelo Monfort <pochu@debian.org>: + + * Team upload + * d/p/Return-bad-identity-error-if-identity-is-unset.patch: + Backport fix for CVE-2020-13645 from upstream (Closes: #961756) + 2.50.0-1 [Mon, 19 Sep 2016 21:01:51 +0200] Andreas Henriksson <andreas@fatal.se>: * New upstream release. <http://10.200.17.11/4.4-5/#112311486172474208>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-5] 046b7a693b Bug #51704: glib-networking 2.50.0-1+deb9u1 doc/errata/staging/glib-networking.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x660>