Your message dated Sat, 09 Sep 2006 11:02:43 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#386680: fixed in gnutls13 1.4.3-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: libgnutls13
Severity: important
Version: 1.4.3-1
Hi there,
I just upgraded to libgnutls13 to 1.4.3-1 and got problems in
conjunction with libtasn1-3 0.3.5-2 and libldap2 2.1.30-13+b1.
I use LDAP for authentication and thus both sshd and sudo broke. (PAM
and NSS.)
See the following backtrace as an example:
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1478748480 (LWP 22966)]
0xa7c21fad in asn1_read_value () from /usr/lib/libtasn1.so.3
(gdb) bt
#0 0xa7c21fad in asn1_read_value () from /usr/lib/libtasn1.so.3
#1 0xa7c74b9f in gnutls_x509_crt_check_issuer () from
/usr/lib/libgnutls.so.13
#2 0xa7c74d76 in _gnutls_x509_verify_signature ()
from /usr/lib/libgnutls.so.13
#3 0xa7c755bf in gnutls_x509_crl_verify () from /usr/lib/libgnutls.so.13
#4 0xa7c75a87 in gnutls_x509_crt_list_verify () from
/usr/lib/libgnutls.so.13
#5 0xa7c5da88 in _gnutls_x509_cert_verify_peers ()
from /usr/lib/libgnutls.so.13
#6 0xa7c509a5 in gnutls_certificate_verify_peers2 ()
from /usr/lib/libgnutls.so.13
#7 0xa7c509d9 in gnutls_certificate_verify_peers ()
from /usr/lib/libgnutls.so.13
#8 0xa7cf6438 in gnutls_SSL_shutdown () from /usr/lib/libldap_r.so.2
#9 0xa7cf5ba5 in ldap_int_tls_start () from /usr/lib/libldap_r.so.2
#10 0xa7cd515b in ldap_int_open_connection () from /usr/lib/libldap_r.so.2
#11 0xa7ce74f3 in ldap_new_connection () from /usr/lib/libldap_r.so.2
#12 0xa7cd4f51 in ldap_open_defconn () from /usr/lib/libldap_r.so.2
#13 0xa7ce7c68 in ldap_send_initial_request () from /usr/lib/libldap_r.so.2
#14 0xa7cdd999 in ldap_sasl_bind () from /usr/lib/libldap_r.so.2
#15 0xa7cdde34 in ldap_simple_bind () from /usr/lib/libldap_r.so.2
I am confident that this is an libgnutls13 issue, as the segfaults
started immediately after the upgrade.
Kind regards,
Philipp Kern
--- End Message ---
--- Begin Message ---
Source: gnutls13
Source-Version: 1.4.3-2
We believe that the bug you reported is fixed in the latest version of
gnutls13, which is due to be installed in the Debian FTP archive:
gnutls-bin_1.4.3-2_i386.deb
to pool/main/g/gnutls13/gnutls-bin_1.4.3-2_i386.deb
gnutls-doc_1.4.3-2_all.deb
to pool/main/g/gnutls13/gnutls-doc_1.4.3-2_all.deb
gnutls13_1.4.3-2.diff.gz
to pool/main/g/gnutls13/gnutls13_1.4.3-2.diff.gz
gnutls13_1.4.3-2.dsc
to pool/main/g/gnutls13/gnutls13_1.4.3-2.dsc
libgnutls-dev_1.4.3-2_i386.deb
to pool/main/g/gnutls13/libgnutls-dev_1.4.3-2_i386.deb
libgnutls13-dbg_1.4.3-2_i386.deb
to pool/main/g/gnutls13/libgnutls13-dbg_1.4.3-2_i386.deb
libgnutls13_1.4.3-2_i386.deb
to pool/main/g/gnutls13/libgnutls13_1.4.3-2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Metzler <[EMAIL PROTECTED]> (supplier of updated gnutls13 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 9 Sep 2006 19:29:52 +0200
Source: gnutls13
Binary: libgnutls-dev libgnutls13 gnutls-bin gnutls-doc libgnutls13-dbg
Architecture: source i386 all
Version: 1.4.3-2
Distribution: unstable
Urgency: low
Maintainer: Debian GnuTLS Maintainers <[EMAIL PROTECTED]>
Changed-By: Andreas Metzler <[EMAIL PROTECTED]>
Description:
gnutls-bin - the GNU TLS library - commandline utilities
gnutls-doc - the GNU TLS library - documentation and examples
libgnutls-dev - the GNU TLS library - development files
libgnutls13 - the GNU TLS library - runtime library
libgnutls13-dbg - GNU TLS library - debugger symbols
Closes: 386680
Changes:
gnutls13 (1.4.3-2) unstable; urgency=low
.
* the lesser of two weevils release.
[ Andreas Metzler ]
* Revert patch for GNUTLS-SA-2006-4 as it caused segmentation faults in
various programs, including mutt. (closes: #386680)
Files:
472af8b648fdf2826614bc4b5ed4500e 947 devel optional gnutls13_1.4.3-2.dsc
d46ffa15e9e3d3b16f3204a7bc9b9bb0 10433 devel optional gnutls13_1.4.3-2.diff.gz
3a450cd0da5a0e5e556e42e529d45a6f 2308290 doc optional
gnutls-doc_1.4.3-2_all.deb
a91a76d0751a21d79d8973e3342d2e91 350106 libdevel optional
libgnutls-dev_1.4.3-2_i386.deb
186ca33dd2a6b17ea6774fa388cfa57e 273076 libs important
libgnutls13_1.4.3-2_i386.deb
b9fe374eb2df6e564c59055aef45069e 516164 devel extra
libgnutls13-dbg_1.4.3-2_i386.deb
63d112a73bae8a6fbb41af8126cde59c 163366 net optional
gnutls-bin_1.4.3-2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFFAv3vHTOcZYuNdmMRAuv/AJ99jw53EytGEstsw/EXeS42rpNAFACeOEtA
tqocnIXWFrm39qibmwiq12c=
=Rq7o
-----END PGP SIGNATURE-----
--- End Message ---
