Bug 2645

Summary: [UPDATE REQUEST] [UPSTREAM UPDATE] neon
Product: Server Bugs Reporter: Andrew Lukoshko <andrew.lukoshko>
Component: Main PackagesAssignee: Andrew Lukoshko <andrew.lukoshko>
Status: RESOLVED FIXED QA Contact: ROSA Server Bugs <server-bugs>
Severity: normal    
Priority: Normal CC: v.potapov
Version: unspecifiedFlags: v.potapov: qa_verified+
andrew.lukoshko: published_server+
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Platform: --- ROSA Vulnerability identifier:
RPM Package: ISO-related:
Bad POT generating: Upstream:

Description Andrew Lukoshko 2013-09-04 12:50:38 MSK 
RELS 6.4

* The neon HTTP library did not disable TLS padding support in the GnuTLS
toolkit. Applications such as Subversion failed to communicate with some SSL
servers, for example, where a load balancer was also in use. This update
disables TLS padding support in the GnuTLS toolkit, and applications using the
neon HTTP library can now successfully communicate with SSL servers.

http://rhn.redhat.com/errata/RHEA-2013-1188.html

https://abf.rosalinux.ru/build_lists/1230248
https://abf.rosalinux.ru/build_lists/1230249
Comment 1 Vladimir Potapov 2013-09-04 18:05:26 MSK 
neon-0.29.3-3.res6
********************* RHEL Advisory *****************
* The neon HTTP library did not disable TLS padding support in the GnuTLS
toolkit. Applications such as Subversion failed to communicate with some SSL
servers, for example, where a load balancer was also in use. This update
disables TLS padding support in the GnuTLS toolkit, and applications using the
neon HTTP library can now successfully communicate with SSL servers.
******************************************************
QA Verified