From mboxrd@z Thu Jan  1 00:00:00 1970
From: Adolf Belka <adolf.belka@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH] gnutls: Update to version 3.8.3
Date: Tue, 23 Jan 2024 12:26:40 +0100
Message-ID: <20240123112647.8800-2-adolf.belka@ipfire.org>
In-Reply-To: <20240123112647.8800-1-adolf.belka@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0679459621746005289=="
List-Id: <development.lists.ipfire.org>

--===============0679459621746005289==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

- Update from version 3.8.2 to 3.8.3
- Update of rootfile
- Changelog
    3.8.3
	- libgnutls: Fix more timing side-channel inside RSA-PSK key exchange
	   [GNUTLS-SA-2024-01-14, CVSS: medium] [CVE-2024-0553]
	- libgnutls: Fix assertion failure when verifying a certificate chain with a
	   cycle of cross signatures
	   [GNUTLS-SA-2024-01-09, CVSS: medium] [CVE-2024-0567]
	- libgnutls: Fix regression in handling Ed25519 keys stored in PKCS#11 token
	   certtool was unable to handle Ed25519 keys generated on PKCS#11
	   with pkcs11-tool (OpenSC). This is a regression introduced in 3.8.2.

Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
 config/rootfiles/common/gnutls | 2 +-
 lfs/gnutls                     | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/config/rootfiles/common/gnutls b/config/rootfiles/common/gnutls
index cc6c90194..6cdaeb151 100644
--- a/config/rootfiles/common/gnutls
+++ b/config/rootfiles/common/gnutls
@@ -32,7 +32,7 @@ usr/lib/libgnutls-dane.so.0.4.1
 #usr/lib/libgnutls.la
 #usr/lib/libgnutls.so
 usr/lib/libgnutls.so.30
-usr/lib/libgnutls.so.30.37.0
+usr/lib/libgnutls.so.30.37.1
 #usr/lib/libgnutlsxx.la
 #usr/lib/libgnutlsxx.so
 usr/lib/libgnutlsxx.so.30
diff --git a/lfs/gnutls b/lfs/gnutls
index 19f79c6db..39e1d0bd1 100644
--- a/lfs/gnutls
+++ b/lfs/gnutls
@@ -1,7 +1,7 @@
 ############################################################################=
###
 #                                                                           =
  #
 # IPFire.org - A linux based firewall                                       =
  #
-# Copyright (C) 2007-2023  IPFire Team  <info(a)ipfire.org>                 =
    #
+# Copyright (C) 2007-2024  IPFire Team  <info(a)ipfire.org>                 =
    #
 #                                                                           =
  #
 # This program is free software: you can redistribute it and/or modify      =
  #
 # it under the terms of the GNU General Public License as published by      =
  #
@@ -24,7 +24,7 @@
=20
 include Config
=20
-VER        =3D 3.8.2
+VER        =3D 3.8.3
=20
 THISAPP    =3D gnutls-$(VER)
 DL_FILE    =3D $(THISAPP).tar.xz
@@ -40,7 +40,7 @@ objects =3D $(DL_FILE)
=20
 $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE)
=20
-$(DL_FILE)_BLAKE2 =3D d70524f17919bc02fefc610ede948d209e50e3276fc1e2d40aaed5=
c208265455da220d948f4a3f21db57f9d253c103f3a1b9a6daa2229d02c7c224448acc2777
+$(DL_FILE)_BLAKE2 =3D 27a4bb4d8a5697e2187113351b2ad1e849bca7bcfb556c1b54fc2d=
02bef16e2789e7c437ac8db8fe6d2bcfc0e3e3467bbff2dd5d2fc0adb9bf8bda81cb89e452
=20
 install : $(TARGET)
=20
--=20
2.43.0


--===============0679459621746005289==--