Please consider gnutls26 2.4.2-6 for lenny

[Andreas Metzler]

Hello,

I have uploaded gnutls26 2.4.2-6 on saturday, the upload is targeted
for lenny. I know it is rather late, but the timing was not in my
hands.

| New patches, syncing with 2.4.3 upstream oldstable release:
| + 24_intermedcertificate.patch If a non-root certificate ist trusted
|   gnutls certificateificate verification stops there instead of checking
|   up to the root of the certificate chain.

This provides a workaround against the changed behavior with respect
to x509 v1 CA after the fix for CVE-2008-4989. People can make the
intermediate certificate trusted to work around the fact that GnuTLS
will not trust certs signed by the toplevel x509 v1 CA cert anymore
(unless GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT and/or
GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT are set).

| + 22_whitespace.patch - Whitespace only changes, to make it possible to
|   apply upstream fixes without manual changes.

It is rather short, too.

| + 25_bufferoverrun.patch. Fix buffer overrun bug in
|   gnutls_x509_crt_list_import.
|   http://news.gmane.org/find-root.php?message_id=%3c000001c91d6e%2463059c90%242910d5b0%24%40com%3e

An earlier that I somehow overlooked and forgot to pull from upstream
stable.

thanks, cu andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'