It has been discovered that the GnuTLS certificate verification methods implemented in libcurl-gnutls, a solid, usable, and portable multi-protocol file transfer library, did not check for expired or invalid dates. For the stable distribution (etch), this problem has been fixed in version 7.15.5-1etch1. We recommend that you upgrade your libcurl3-gnutls package.
It has been discovered that the GnuTLS certificate verification methods implemented in libcurl-gnutls, a solid, usable, and portable multi-protocol file transfer library, did not check for expired or invalid dates.
For the stable distribution (etch), this problem has been fixed in version 7.15.5-1etch4.
We recommend that you upgrade your libcurl3-gnutls package.
MD5 checksums of the listed files are available in the original advisory.