[packages/gnutls] up to 3.8.11 (fixes CVE-2025-9820)

atler atler at pld-linux.org
Thu Nov 20 19:10:55 CET 2025 

commit 634472ff801ca6c6cbe87dcbc60f841259379978
Author: Jan Palus <atler at pld-linux.org>
Date:   Thu Nov 20 19:09:57 2025 +0100

    up to 3.8.11 (fixes CVE-2025-9820)

 gnutls-pl.po-update.patch |  2 +-
 gnutls.spec               |  6 ++++--
 includes.patch            | 32 ++++++++++++++++++++++++++++++++
 3 files changed, 37 insertions(+), 3 deletions(-)
---
diff --git a/gnutls.spec b/gnutls.spec
index 2ed4877..f528536 100644
--- a/gnutls.spec
+++ b/gnutls.spec
@@ -14,15 +14,16 @@
 Summary:	The GNU Transport Layer Security Library
 Summary(pl.UTF-8):	Biblioteka GNU TLS (Transport Layer Security)
 Name:		gnutls
-Version:	3.8.10
+Version:	3.8.11
 Release:	1
 License:	LGPL v2.1+ (libgnutls), LGPL v3+ (libdane), GPL v3+ (openssl library and tools)
 Group:		Libraries
 Source0:	https://www.gnupg.org/ftp/gcrypt/gnutls/v3.8/%{name}-%{version}.tar.xz
-# Source0-md5:	803c6f5c9cbe55c64fbb46690d329a77
+# Source0-md5:	614a4f4131ee9d9c004830181bddccea
 Patch0:		%{name}-info.patch
 Patch1:		%{name}-link.patch
 Patch2:		%{name}-pl.po-update.patch
+Patch3:		includes.patch
 URL:		https://www.gnutls.org/
 BuildRequires:	autoconf >= 2.71
 BuildRequires:	automake >= 1:1.12.2
@@ -261,6 +262,7 @@ Statyczna biblioteka gnutls-openssl.
 %patch -P0 -p1
 %patch -P1 -p1
 %patch -P2 -p1
+%patch -P3 -p1
 
 %{__rm} po/stamp-po
 
diff --git a/gnutls-pl.po-update.patch b/gnutls-pl.po-update.patch
index 8984345..fc276c3 100644
--- a/gnutls-pl.po-update.patch
+++ b/gnutls-pl.po-update.patch
@@ -13,7 +13,7 @@
 -"Project-Id-Version: gnutls-3.6.8\n"
 +"Project-Id-Version: gnutls-3.8.7\n"
  "Report-Msgid-Bugs-To: bug-gnutls at gnu.org\n"
- "POT-Creation-Date: 2025-07-09 13:39+0900\n"
+ "POT-Creation-Date: 2025-11-20 11:10+0900\n"
 -"PO-Revision-Date: 2019-06-01 08:22+0200\n"
 +"PO-Revision-Date: 2024-08-27 22:02+0200\n"
  "Last-Translator: Jakub Bogusz <qboosh at pld-linux.org>\n"
diff --git a/includes.patch b/includes.patch
new file mode 100644
index 0000000..e90daf6
--- /dev/null
+++ b/includes.patch
@@ -0,0 +1,32 @@
+From e080003be3bf1fdcd65f8055a185dfe54dfb25b3 Mon Sep 17 00:00:00 2001
+From: Jan Palus <jpalus at fastmail.com>
+Date: Thu, 20 Nov 2025 18:51:59 +0100
+Subject: [PATCH] mem: include headers for size_t and uint8_t
+
+Fixes: #1764
+
+Signed-off-by: Jan Palus <jpalus at fastmail.com>
+---
+ lib/mem.h | 5 +++++
+ 1 file changed, 5 insertions(+)
+
+diff --git a/lib/mem.h b/lib/mem.h
+index 8751cac58..b0e661e94 100644
+--- a/lib/mem.h
++++ b/lib/mem.h
+@@ -23,7 +23,12 @@
+ #ifndef GNUTLS_LIB_MEM_H
+ #define GNUTLS_LIB_MEM_H
+ 
++#ifdef HAVE_CONFIG_H
+ #include "config.h"
++#endif
++
++#include <stddef.h>
++#include <stdint.h>
+ 
+ #ifdef HAVE_SANITIZER_ASAN_INTERFACE_H
+ #include <sanitizer/asan_interface.h>
+-- 
+2.52.0
+
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/gnutls.git/commitdiff/634472ff801ca6c6cbe87dcbc60f841259379978

More information about the pld-cvs-commit mailing list