A security vulnerability has been fixed in WeeChat 3.4.1, which was released
yesterday: after changing some GnuTLS options, the server certificate is not
verified any more on new TLS connections.
This vulnerability affects WeeChat versions from 3.2 to 3.4.
For more information, see the WeeChat Security Advisory (WSA):
The bug has been referenced in the following commit(s):
Author: Jonathan Davies <email@example.com>
AuthorDate: 2022-03-15 13:50:03 +0000
Commit: Sam James <firstname.lastname@example.org>
CommitDate: 2022-03-16 17:04:30 +0000
net-irc/weechat: Version updated to 3.4.1.
Signed-off-by: Jonathan Davies <email@example.com>
Signed-off-by: Sam James <firstname.lastname@example.org>
net-irc/weechat/Manifest | 1 +
net-irc/weechat/weechat-3.4.1.ebuild | 178 +++++++++++++++++++++++++++++++++++
2 files changed, 179 insertions(+)