Changelog for gnutls-1.2.4-4tr.i586.rpm :
Fri Sep 22 14:00:00 2006 Nived Gopalan 1.2.4-4tr
- SECURITY Fix: A vulnerability has been reported in GnuTLS, caused due
to an error in the verification of certain signatures. If a RSA key
with exponent 3 is used, it may be possible to forge PKCS #1 v1.5
signatures signed with that key.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2006-4790 to this issue.

Mon Feb 13 13:00:00 2006 Nived Gopalan 1.2.4-3tr
- SECURITY Fix: Evgeny Legerov has reported some vulnerabilities in
GnuTLS libtasn1, which potentially can be exploited by malicious
people to cause a DoS. The vulnerabilities are caused due to errors
within the DER decoder in libtasn1. This can be exploited to crash an
application that uses the library via specially-crafted input.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2006-0645 to this issue

Tue May 31 14:00:00 2005 Ajith Thampi 1.2.4-1tr
- New Upstream

Mon May 9 14:00:00 2005 Ajith Thampi 1.2.3-1tr
- New Upstream
- Fix DOS Vulnerabilty, A remote user can send specially crafted data to
trigger a flaw in record packet parsing to cause denial of service
conditions.

Thu Apr 7 14:00:00 2005 Bipin S 1.2.1-1tr
- New upsteam

Thu Mar 17 13:00:00 2005 Lakshmi Dinamoni 1.2.0-5tr
- Rebuild with glibc-2.3.4-6tr

Fri Mar 11 13:00:00 2005 Ajith Thampi 1.2.0-4tr
- configure option \"disable srp authentication\" cleared

Fri Mar 4 13:00:00 2005 Ajith Thampi 1.2.0-2tr
- Fixed filelist
- added configure options to opencdk, disable srp authentication

Tue Mar 1 13:00:00 2005 Ajith Thampi 1.2.0-1tr
- New Upstream
- Converted to official package for tsl-3.0, minor cleanup

Tue Dec 14 13:00:00 2004 Syed Shabir 1.0.23-1sh
- New Upstream

Mon Dec 6 13:00:00 2004 Syed Shabir 0.9.91-1sh
- Initial Spec file for GnuTLS