Summary: | mail-client/claws-mail-3.6.1 segfaults with new/patched >net-libs/gnutls-2.2.5 | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | parafin <help> |
Component: | Current packages | Assignee: | Christian Faulhammer (RETIRED) <fauli> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | crypto+disabled, didier-bugzillagentoo, hoffie, jer, ken69267, net-mail+disabled |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 245850 |
Description
parafin
2008-11-15 19:54:19 UTC
Also last messages from claws-mail --debug: ssl.c:315:waiting for SSL_connect thread... ssl.c:333:SSL_connect thread returned 0 Segmentation fault I also encouter the problem with a self-signed certificate. Upstream discussed about this problem and seems to have found a fix. See thread http://news.gmane.org/find-root.php?group=gmane.comp.encryption.gpg.gnutls.devel&article=3216 on the upstream ML. (In reply to comment #2) > I also encouter the problem with a self-signed certificate. Upstream discussed > about this problem and seems to have found a fix. See thread > http://news.gmane.org/find-root.php?group=gmane.comp.encryption.gpg.gnutls.devel&article=3216 > on the upstream ML. Sorry, the thread that I mentioned resulted in the patch provided with the ebuild. So, there is still a bug intoduced by the first patch for the CVE problem and not fixed by the second one. Upstream commited patch http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commit;h=2de9d54256592195e6b1b04272802efa037ed1a8. I tested the patch with the gentoo 2.4.1-r1 ebuild of gnutls, it fixes the problem for me. So this seem to be a failure in gnutls (adding net-mail team). Also have a look at security bug 245850, which caused the whole trouble for stable users. Ok, adding me to CC to track this bug for security reasons and adding crypto@ who maintains gnutls... If I got this correctly, this affects both (security-)fixed versions, i.e. gnutls-2.4.1-r1 and >=gnutls-2.6.0-r1, right? Considering that this is a regression in a stable package which at least renders claws-mail (anything else?) unusable in certain cases, we might want to increase severity. I tried all 4 versions: 2.2.5, 2.4.1-r1, 2.6.0-r1 and 2.6.1 - only the first one worked fine with claws-mail. fixed - sorry for the oversight. gnutls-2.4.1-r2.ebuild and gnutls-2.6.0-r2.ebuild added for your error free claws. |