GNU bug report logs - #48648
[PATCH] gnu: gnutls: Update to 3.6.16 [fixes CVE-2021-20305].

Previous Next

Package: guix-patches;

Reported by: Solene Rapenne <solene <at> perso.pw>

Date: Tue, 25 May 2021 10:37:02 UTC

Severity: normal

Tags: patch

Done: Leo Famulari <leo <at> famulari.name>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Leo Famulari <leo <at> famulari.name>
To: Marius Bakke <marius <at> gnu.org>
Cc: 48648 <at> debbugs.gnu.org, Solene Rapenne <solene <at> perso.pw>
Subject: [bug#48648] [PATCH] gnu: gnutls: Update to 3.6.16 [fixes CVE-2021-20305].
Date: Tue, 25 May 2021 16:00:53 -0400

[Message part 1 (text/plain, inline)]

On Tue, May 25, 2021 at 09:46:10PM +0200, Marius Bakke wrote:
> GnuTLS usually mention whether or not an update is ABI-compatible:
> 
>   https://lists.gnupg.org/pipermail/gnutls-help/2021-May/004707.html

Ah, that's great. They say it's compatible.

> However it's good practice to verify that with something like 'abidiff'
> (from the 'libabigail' package).  I.e.:
> 
>   abidiff $(guix build gnutls)/lib/libgnutls.so \
>           $(./pre-inst-env guix build gnutls)/lib/libgnutls.so
> 
> (this won't work because of multiple outputs, but you get the drill)

Solene, can you try it and let us know the result?

[signature.asc (application/pgp-signature, inline)]

This bug report was last modified 3 years and 362 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #48648 [PATCH] gnu: gnutls: Update to 3.6.16 [fixes CVE-2021-20305].

GNU bug report logs - #48648
[PATCH] gnu: gnutls: Update to 3.6.16 [fixes CVE-2021-20305].