Security update for gnutls

SUSE Security Update: Security update for gnutls
Announcement ID: SUSE-SU-2014:0324-1
Rating: critical
References: #865804
Affected Products:
  • SUSE CORE 9

  • An update that fixes one vulnerability is now available.

    Description:


    The GnuTLS library received a critical security fix:

    * CVE-2014-0092: The X.509 certificate verification had
    incorrect error handling, which could lead to broken
    certificates marked as being valid.

    Security Issue reference:

    * CVE-2014-0092
    >

    Package List:

    • SUSE CORE 9 (i586 s390 s390x x86_64):
    • gnutls-1.0.8-26.30
    • gnutls-devel-1.0.8-26.30

    References:

    • http://support.novell.com/security/cve/CVE-2014-0092.html
    • https://bugzilla.novell.com/865804
    • http://download.novell.com/patch/finder/?keywords=f0ade0f71a1461cdf632f942531d7d41