Your message dated Wed, 12 Nov 2008 18:47:05 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#505279: fixed in gnutls26 2.4.2-3 has caused the Debian Bug report #505279, regarding libgnutls26: segfault in _gnutls_x509_crt_get_raw_dn2 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 505279: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505279 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems
--- Begin Message ---Package: libgnutls26 Version: 2.4.2-2 Severity: critical Justification: breaks unrelated software Since updating libgnutls26 today I cannot use mutt anymore because it gets a segfault. Here's what gdb says: #0 0xf7e13ff4 in _gnutls_x509_crt_get_raw_dn2 (cert=0x11, whom=0xf7e4e367 "issuer", start=0xff9b6a04) at x509.c:1718 #1 0xf7e18c9a in is_issuer (cert=0xf7e4cdce, issuer_cert=0x89c4d90) at verify.c:164 #2 0xf7e19b12 in _gnutls_verify_certificate2 (cert=0x11, trusted_cas=<value optimized out>, tcas_size=145, flags=0, output=0xff9b6ac8) at verify.c:199 #3 0xf7e1a381 in gnutls_x509_crt_list_verify (cert_list=0x8b27a68, cert_list_length=0, CA_list=0x8b1e250, CA_list_length=145, CRL_list=0x0, CRL_list_length=0, flags=0, verify=0xff9b6b8c) at verify.c:396 #4 0xf7dfc64c in _gnutls_x509_cert_verify_peers (session=0x8b26540, status=0xff9b6b8c) at gnutls_x509.c:176 #5 0xf7dee921 in gnutls_certificate_verify_peers2 (session=0x8b26540, status=0xff9b6b8c) at gnutls_cert.c:606 #6 0xf7dee959 in gnutls_certificate_verify_peers (session=0x8b26540) at gnutls_cert.c:639 #7 0x080d46d8 in tls_check_certificate (conn=0x89c38b8) at ../mutt_ssl_gnutls.c:509 #8 0x080d5ad8 in tls_negotiate (conn=0x89c38b8) at ../mutt_ssl_gnutls.c:269 #9 0x080d5c85 in mutt_ssl_starttls (conn=0x89c38b8) at ../mutt_ssl_gnutls.c:162 #10 0x080de14d in imap_open_connection (idata=0x89c3e30) at ../../imap/imap.c:436 #11 0x080de3fd in imap_conn_find (account=0xff9b83c4, flags=<value optimized out>) at ../../imap/imap.c:367 #12 0x080df1d1 in imap_open_mailbox (ctx=0x89b8400) at ../../imap/imap.c:567 ... Downgrading to 2.4.2-1 immediately fixes the problem. Michael -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (x86_64) Kernel: Linux 2.6.26-1-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages libgnutls26 depends on: ii libc6 2.7-16 GNU C Library: Shared libraries ii libgcrypt11 1.4.1-2 LGPL Crypto library - runtime libr ii libgpg-error0 1.4-2 library for common error values an ii libtasn1-3 1.5-1 Manage ASN.1 structures (runtime) ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime libgnutls26 recommends no packages. Versions of packages libgnutls26 suggests: pn gnutls-bin <none> (no description available) -- no debconf information
--- End Message ---
--- Begin Message ---Source: gnutls26 Source-Version: 2.4.2-3 We believe that the bug you reported is fixed in the latest version of gnutls26, which is due to be installed in the Debian FTP archive: gnutls-bin_2.4.2-3_i386.deb to pool/main/g/gnutls26/gnutls-bin_2.4.2-3_i386.deb gnutls-doc_2.4.2-3_all.deb to pool/main/g/gnutls26/gnutls-doc_2.4.2-3_all.deb gnutls26_2.4.2-3.diff.gz to pool/main/g/gnutls26/gnutls26_2.4.2-3.diff.gz gnutls26_2.4.2-3.dsc to pool/main/g/gnutls26/gnutls26_2.4.2-3.dsc guile-gnutls_2.4.2-3_i386.deb to pool/main/g/gnutls26/guile-gnutls_2.4.2-3_i386.deb libgnutls-dev_2.4.2-3_i386.deb to pool/main/g/gnutls26/libgnutls-dev_2.4.2-3_i386.deb libgnutls26-dbg_2.4.2-3_i386.deb to pool/main/g/gnutls26/libgnutls26-dbg_2.4.2-3_i386.deb libgnutls26_2.4.2-3_i386.deb to pool/main/g/gnutls26/libgnutls26_2.4.2-3_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Metzler <[EMAIL PROTECTED]> (supplier of updated gnutls26 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Wed, 12 Nov 2008 19:23:23 +0100 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls-doc guile-gnutls Architecture: source all i386 Version: 2.4.2-3 Distribution: unstable Urgency: low Maintainer: Debian GnuTLS Maintainers <[EMAIL PROTECTED]> Changed-By: Andreas Metzler <[EMAIL PROTECTED]> Description: gnutls-bin - the GNU TLS library - commandline utilities gnutls-doc - the GNU TLS library - documentation and examples guile-gnutls - the GNU TLS library - GNU Guile bindings libgnutls-dev - the GNU TLS library - development files libgnutls26 - the GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols Closes: 505279 Changes: gnutls26 (2.4.2-3) unstable; urgency=low . * Fix a crash on trying to verify self-signed certificates introduced by the patch for CVE-2008-4989. Closes: #505279 Checksums-Sha1: 02a6b3324d3dedb106760489138fe5831258b3c5 1545 gnutls26_2.4.2-3.dsc a4122213fe7d5ac667cc221a9d3cb3cda230b96b 14964 gnutls26_2.4.2-3.diff.gz 722e77b16cfb60227013b3a6d1ee822c493fd013 2761478 gnutls-doc_2.4.2-3_all.deb 59ee490cc3903d0b69d0c53631998fd8e508f79b 536952 libgnutls-dev_2.4.2-3_i386.deb 7f0ec4b566ac8473ca36b9f37557083639dc9a4c 455882 libgnutls26_2.4.2-3_i386.deb 5fb851adfae8a09a6fb2e6e06c45b79627a8bdb9 1090632 libgnutls26-dbg_2.4.2-3_i386.deb f8af7f0bb467a94aa45bbf4ef6322a10b19f3af7 268914 gnutls-bin_2.4.2-3_i386.deb a4aa92abbf591fbf0adbfc4d20e296241672fe6a 210566 guile-gnutls_2.4.2-3_i386.deb Checksums-Sha256: c168cc9bf531c1881df0af0c422ce2489f7e41a5e4f7ec3921b7ed114764f8b0 1545 gnutls26_2.4.2-3.dsc d9055e35a06d7c2f53f535b685b38237e24fdda73a35a1b9fda95d0ddeba14fa 14964 gnutls26_2.4.2-3.diff.gz 5ac204129c240dd4267c0872401b64130e07b5a7dc22ac9b463d4d9f8e282ebe 2761478 gnutls-doc_2.4.2-3_all.deb 84335e20e5b81b036e44b13b4aca119a966716615c87ffc289595764897c5b31 536952 libgnutls-dev_2.4.2-3_i386.deb 950647cdeb1ae5432cb6ec6ee7179eee5b4dce68413af6584c09e1df987fbe91 455882 libgnutls26_2.4.2-3_i386.deb 56a59a3419c9c77f659d8ff38e2e382654a05d6ce125dbe2f28fb49e35ffb4cb 1090632 libgnutls26-dbg_2.4.2-3_i386.deb b3cda65896f6adb098cec175ed64e76fcad81ee58100cd06a3930d3a01925ff6 268914 gnutls-bin_2.4.2-3_i386.deb c57667990f07301a376076b916b4f2b28957effa39f7647c4a93937c4450d651 210566 guile-gnutls_2.4.2-3_i386.deb Files: 717c0d67cf855be946d6bb06149a8eaf 1545 devel optional gnutls26_2.4.2-3.dsc 8aa8310a8219aa90ab34ccded5d1c8e8 14964 devel optional gnutls26_2.4.2-3.diff.gz d6c7a52a114a482236cfcdd87a6c1f28 2761478 doc optional gnutls-doc_2.4.2-3_all.deb 8be95085c6ce547c5f77031bf4b53705 536952 libdevel optional libgnutls-dev_2.4.2-3_i386.deb f9b51b2ca6b2697cb1715959aee20358 455882 libs important libgnutls26_2.4.2-3_i386.deb 6600b437acc1de631a4863e6971da3a8 1090632 devel extra libgnutls26-dbg_2.4.2-3_i386.deb 3de3c678379fb1f4da049f9bdef4fa45 268914 net optional gnutls-bin_2.4.2-3_i386.deb e0055038658a5a48a19d45f031860739 210566 libs optional guile-gnutls_2.4.2-3_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkkbIZQACgkQHTOcZYuNdmP1iwCfVnqxSryp86s/wF2G/1rM8qlR TF0AnR6ITrEEmw/FUqz/b+aUg1JG5plM =8ksx -----END PGP SIGNATURE-----
--- End Message ---
