[gnutls-devel] gnutls 3.3.20

Nikos Mavrogiannopoulos nmav at gnutls.org
Fri Jan 8 10:03:20 CET 2016


Hello, 
 I've just released gnutls 3.3.20. This is a bug-fix release on
the previous stable branch.

* Version 3.3.20 (released 2016-01-08)

** libgnutls: Corrected memory leak in gnutls_pubkey_import_privkey() 
   when used with PKCS #11 keys.

** libgnutls: For DSA and ECDSA keys in PKCS #11 objects, import
   their public keys from either a public key object or a certificate.
   That is, because private keys do not contain all the required
   parameters for a direct import. Reported by Jan Vcelak.

** libgnutls: Fixed issue when writing ECDSA private keys in PKCS #11
   tokens.

** libgnutls: Fixed out-of-bounds read in
   gnutls_x509_ext_export_key_usage(), report and patch by Tim Kosse.

** libgnutls: Handle DNS name constraints with a leading dot. 
   Backported from 3.4.x branch.

** libgnutls: The max-record extension is no longer negotiated on DTLS.
   This resolves issue with the max-record being negotiated but 
   ignored.

** API and ABI modifications:
No changes since last version.


Getting the Software
====================

GnuTLS may be downloaded directly from
<ftp://ftp.gnutls.org/gcrypt/gnutls/>.  A list of GnuTLS mirrors can be
found at <http://www.gnutls.org/download.html>.

Here are the XZ compressed sources:

  ftp://ftp.gnutls.org/gcrypt/gnutls/v3.3/gnutls-3.3.20.tar.xz

Here are OpenPGP detached signatures signed using key 0x96865171:

  ftp://ftp.gnutls.org/gcrypt/gnutls/v3.3/gnutls-3.3.20.tar.xz.sig

Note that it has been signed with my openpgp key:
pub   3104R/96865171 2008-05-04 [expires: 2028-04-29]
uid                  Nikos Mavrogiannopoulos <nmav <at> gnutls.org>
uid                  Nikos Mavrogiannopoulos <n.mavrogiannopoulos <at>
gmail.com>
sub   2048R/9013B842 2008-05-04 [expires: 2018-05-02]
sub   2048R/1404A91D 2008-05-04 [expires: 2018-05-02]

regards,
Nikos



More information about the Gnutls-devel mailing list