gnutls26 (2.12.23-12ubuntu2.4) trusty-security; urgency=medium * SECURITY UPDATE: incorrect RSA+MD5 support with TLS 1.2 - debian/patches/CVE-2015-7575.patch: do not consider any values from the extension data to decide acceptable algorithms in lib/ext_signature.c. - CVE-2015-7575 -- Marc Deslauriers <email address hidden> Thu, 07 Jan 2016 10:38:24 -0500