minor memory leak in libgnutls26 pkcs11 initialization
Andreas Metzler
ametzler at downhill.at.eu.org
Mon Feb 4 19:02:57 UTC 2013
On 2013-02-03 Daniel Kahn Gillmor <dkg at fifthhorseman.net> wrote:
> Hi debian GnuTLS folks--
> the following patch fixes a minor memory leak in GnuTLS's pkcs11
> initialization.
> It is already fixed in libgnutls28 and i've just pushed it into the
> 2.12.x development branch upstream, so hopefully it will be in 2.12.23
> whenever that comes out.
> Fixing this leak in debian will make it easier to use tools like
> valgrind on programs that use libgnutls26 without getting spurious error
> reports.
> I'm not particularly clear how the pkg-gnutls-maint team is using svn
> with multiple branches (e.g. i don't see a branch for the version
> currently in sid or wheezy),
[...]
Hello,
It is a little bit spur of a moment thing, I try to do as little
merging (because it is SVN) as possible, which is why trunk might
follow unstable or experimental. The stuff I would like to see in
wheezy is in branch2.12.20-1+wheezy.
Thank you for the heads up. Since 2.12.23 just appeared quickly and
urgently I have just uploaded 2.12.20-4 to unstable. It is essentially
identical to 2.12.23, except for these parts:
* gnulib update
* libtasn1 3.x compability (which requires libtasn1 2.14 OTOH)
50a53427580d3ead5a38e492966bad0524e56d19
* 0b9d8d6f21dad85038c6de36d8fbd56271263f64 Corrected bug in PGP
subpacket encoding
* build system changes
* The nettle version of "Stricter RSA PKCS #1 1.5 encoding and
decoding. Reported by Kikuchi Masashi."
I hope the release team will accept this for wheezy stable release, if
not we will end up with
http://packages.qa.debian.org/g/gnutls26/news/20121113T184740Z.html +
(GNUTLS-SA-2013-1)
cu andreas
More information about the Pkg-gnutls-maint
mailing list