Urgent GnuTLS update required
- From: Michael Catanzaro <mcatanzaro gnome org>
- To: distributor-list gnome org
- Subject: Urgent GnuTLS update required
- Date: Mon, 01 Jun 2020 09:03:21 -0500
Hi distributors,
By now, you're likely to already have at least one bug report about
this, but an important root CA expired yesterday, leading to a large
number of certificate verification failures in applications that use
GnuTLS [1][2]. Almost all GNOME applications, including WebKitGTK,
depend on GnuTLS (via glib-networking) to perform certificate
verification, so the impact is quite significant.
A patch for GnuTLS is available at [3], which you are encouraged to
urgently apply. Fedora, Debian, and freedesktop-sdk updates are already
in the works. In the meantime, you'll probably notice significant
breakage in random places; e.g. Epiphany CI is currently broken due to
failure to download our adblock filters, freedesktop-sdk builds were
broken due to failure to download gnu-hello, etc.
Michael
[1] https://gitlab.com/gnutls/gnutls/-/issues/1008
[2] https://bugzilla.redhat.com/show_bug.cgi?id=1842174
[3] https://gitlab.com/gnutls/gnutls/-/merge_requests/1271.patch
[Date Prev][
Date Next] [Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
