X-Git-Url: https://git.llucax.com/software/mutt-debian.git/blobdiff_plain/704a8b6fa1eadc7efa694d17188ed48760a68ebf..6e0cd7b3aec391b9acd16011500a03d9924f334f:/debian/patches/upstream/514960-certificate-insecure-algorithm.patch?ds=sidebyside

diff --git a/debian/patches/upstream/514960-certificate-insecure-algorithm.patch b/debian/patches/upstream/514960-certificate-insecure-algorithm.patch
index f0292f2..0aa4096 100644
--- a/debian/patches/upstream/514960-certificate-insecure-algorithm.patch
+++ b/debian/patches/upstream/514960-certificate-insecure-algorithm.patch
@@ -1,3 +1,9 @@
+The new version of gnutls introduced this new option which mutt did not 
+know about, if the cert is signed with an insecure algorithm (md5) it will
+set a particular bit; if the cert is in the cache of the user we will
+unset all bits so this has to be unset as well
+See http://bugs.mutt.org/3229 and http://bugs.debian.org/514960
+
 --- a/mutt_ssl_gnutls.c
 +++ b/mutt_ssl_gnutls.c
 @@ -614,6 +614,13 @@