+++ This bug was initially created as a clone of Bug #292023 +++
Transport Layer Security (TLS, RFC 5246 and previous, including SSL v3 and previous) is subject to a number of serious man-in-the-middle (MITM) attacks related to renegotiation. In general, these problems allow an MITM to inject an arbitrary amount of chosen plaintext into the beginning of the application protocol stream, leading to a variety of abuse possibilities. [...]
(See blocked bug for more information)
net-libs/gnutls-2.10.0 has been released and added to the tree.
Arches, please test and mark stable:
Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 s390 sh sparc x86"
Stable for HPPA.
Stable on alpha.
(In reply to comment #9)
> *ping* ppc
Working on it now.
Stable for PPC.
GLSA together with bug 281224.
This issue was resolved and addressed in
GLSA 201206-18 at http://security.gentoo.org/glsa/glsa-201206-18.xml
by GLSA coordinator Sean Amoss (ackle).