[ol8_appstream] gnutls-dane-3.6.14-8.el8_3.x86_64

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures.
This package contains library that implements the DANE protocol for verifying
TLS certificates through DNSSEC.

Changelog (Show File list) (Show related packages)

• Thu Apr 01 2021 Daiki Ueno <dueno@redhat.com> - 3.6.14-8

  - Port fixes for potential miscalculation in ecdsa_verify (#1942929)

• Tue Nov 03 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-7

  - Increase DH key bits to >= 2048 in self-tests (#1879506)
  - Implement self-tests for KDF and CMAC (#1890870)
  - Fix CVE-2020-24659: heap buffer-overflow when "no_renegotiation" alert is received (#1873959)

• Mon Aug 24 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-6

  - Fix memory leak when serializing iovec_t (#1844112)

• Sat Jul 18 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-5

  - Perform validation checks on (EC)DH public keys and share secrets (#1855803)

• Mon Jun 29 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-4

  - Tighten FIPS DH primes check according to SP800-56A (rev 3) (#1849079)

• Fri Jun 05 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-3

  - Update gnutls-3.6.14-fips-mode-check.patch

• Thu Jun 04 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-2

  - Return false from gnutls_fips140_mode_enabled() if selftests failed (#1827687)

• Thu Jun 04 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-1

  - Update to upstream 3.6.14 release

• Mon May 25 2020 Anderson Sasaki <ansasaki@redhat.com> - 3.6.13-3

  - Add an option to gnutls-cli to wait for resumption under TLS 1.3 (#1677754)

• Wed May 20 2020 Anderson Sasaki <ansasaki@redhat.com> - 3.6.13-2

  - Enable Intel CET (#1838476)