Index: trunk/server/fedora/Makefile
===================================================================
--- trunk/server/fedora/Makefile	(revision 2506)
+++ trunk/server/fedora/Makefile	(revision 2507)
@@ -19,5 +19,5 @@
 # See /COPYRIGHT in this repository for more information.
 
-upstream_yum	= krb5 krb5.i686 httpd openssh rubygems
+upstream_yum	= krb5 krb5.i686 httpd openssh rubygems gnutls
 hackage		= cgi-3001.1.8.2 unix-handle-0.0.0
 upstream_hackage = ghc-cgi ghc-unix-handle
Index: trunk/server/fedora/specs/gnutls.spec.patch
===================================================================
--- trunk/server/fedora/specs/gnutls.spec.patch	(revision 2507)
+++ trunk/server/fedora/specs/gnutls.spec.patch	(revision 2507)
@@ -0,0 +1,28 @@
+--- gnutls.spec.orig	2014-03-08 16:13:24.922925743 -0500
++++ gnutls.spec	2014-03-08 16:14:50.464231133 -0500
+@@ -1,7 +1,7 @@
+ Summary: A TLS protocol implementation
+ Name: gnutls
+ Version: 2.12.23
+-Release: 2%{?dist}
++Release: 2%{?dist}.scripts.%{scriptsversion}
+ # The libgnutls library is LGPLv2+, utilities and remaining libraries are GPLv3+
+ License: GPLv3+ and LGPLv2+
+ Group: System Environment/Libraries
+@@ -26,6 +26,8 @@
+ # Use only FIPS approved ciphers in the FIPS mode
+ Patch7: gnutls-2.12.21-fips-algorithms.patch
+ Patch8: gnutls-2.12.23-cve-2013-2116.patch
++# Patch GNUTLS-SA-2014-2
++Patch9: gnutls-2.12.x-cve-2014-0092.patch
+ 
+ BuildRoot:  %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
+ Requires: libgcrypt >= 1.2.2
+@@ -99,6 +101,7 @@
+ %patch6 -p1 -b .cli-debug
+ %patch7 -p1 -b .fips
+ %patch8 -p1 -b .overread
++%patch9 -p1 -b .cve-2014-0092
+ 
+ for i in auth_srp_rsa.c auth_srp_sb64.c auth_srp_passwd.c auth_srp.c gnutls_srp.c ext_srp.c; do
+     touch lib/$i