Bug#810814: libgnutls26: Encrypted LDAP connection doesn't work after libgnutls26 update

Stanislav Kopp stanislav.kopp at native-instruments.de
Tue Jan 12 14:15:24 UTC 2016


Package: libgnutls26
Version: 2.12.20-8+deb7u5
Severity: important

Dear Maintainer,

After upgrade libgnutls26 to version 2.12.20-8+deb7u5 I cannot run encrypted connection
to LDAP anymore, e.g.

ldapsearch -LLL -x -H ldap://ldap.example.com -b "ou=people,dc=example,dc=com" "(uid=test.user)" -ZZ
ldap_start_tls: Connect error (-11)
        additional info: The signature algorithm is not supported.


The LDAP server (2.4.31-2+deb7u1 on wheezy) is using SHA1 SSL
certificate, was SHA1 support removed from libgnutls26 by chance?

If I downgrade package to 2.12.20-8+deb7u4 or older everything works
fine.

Best,
Stan


-- System Information:
Debian Release: 7.9
  APT prefers oldstable-updates
  APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libgnutls26 depends on:
ii  libc6              2.13-38+deb7u8
ii  libgcrypt11        1.5.0-5+deb7u3
ii  libp11-kit0        0.12-3
ii  libtasn1-3         2.13-2+deb7u2
ii  multiarch-support  2.13-38+deb7u8
ii  zlib1g             1:1.2.7.dfsg-13

libgnutls26 recommends no packages.

libgnutls26 suggests no packages.

-- no debconf information



More information about the Pkg-gnutls-maint mailing list