Univention Bugzilla – Bug 38067
gnutls26: Multiple issues (4.0)
Last modified: 2017-02-21 00:44:21 CET
CVE-2015-0282: Signature forgery CVE-2015-0294: Certificate algorithm consistency checking issue
Fixed in upstream Debian package version 2.12.20-8+deb7u3
2.12.20-8+deb7u3 imported from wheezy and built in errata4.0-3. YAML: 2015-09-11-gnutls26.yaml
OK: DEBIAN_FRONTEND=noninteractive apt-get install -y libgnutls26 OK: /usr/share/doc/libgnutls26/changelog.Debian.gz OK: r63646 + 63650 / 2015-09-11-gnutls26.yaml / CVE… OK: Test: wget --secure-protocol=TLSv1 --ca-certificate=/etc/univention/ssl/ucsCA/CAcert.pem https://$(hostname -f)/ -O /dev/null &>/dev/null && echo OK
<http://errata.software-univention.de/ucs/4.0/331.html>