[3.4] gnutls: Incorrect certificate validation when using OCSP responses (CVE-2016-7444)
It was found an issue in certificate validation using OCSP responses
caused by
not verifying the serial length, which can falsely report a certificate
as valid.
Reference:
https://www.gnutls.org/security.html
Patch:
https://gitlab.com/gnutls/gnutls/commit/964632f37dfdfb914ebc5e49db4fa29af35b1de9
(from redmine: issue id 6230, created on 2016-09-28, closed on 2016-10-25)
- Relations:
- parent #6229 (closed)
- Changesets:
- Revision 0df0c8fd by Natanael Copa on 2016-09-28T10:15:58Z:
main/gnutls: security upgrade to 3.4.15 (CVE-2016-7444)
fixes #6230