Debian Package Tracker

From: Andreas Metzler <ametzler@debian.org>
To: <debian-experimental-changes@lists.debian.org> , <debian-devel-changes@lists.debian.org>
Subject: Accepted gnutls28 3.6.7-1 (source) into experimental
Date: Thu, 28 Mar 2019 07:19:37 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 28 Mar 2019 07:44:36 +0100
Source: gnutls28
Architecture: source
Version: 3.6.7-1
Distribution: experimental
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Closes: 920477 922879
Changes:
 gnutls28 (3.6.7-1) experimental; urgency=medium
 .
   * New upstream version.
     + Update AUTHOR list in copyright file.
     + Update symbol file.
     + Fixes issue preventing sending and receiving from different
       threads when false start was enabled. Closes: #922879
     + gnutls-cli: fix --benchmark-ciphers type overflow. Closes: #920477
     + Fixes a memory corruption (double free) vulnerability in the
       certificate verification API.
       https://gitlab.com/gnutls/gnutls/issues/694 CVE-2019-3829
       GNUTLS-SA-2019-03-27
     + Fixes an invalid pointer access via malformed TLS1.3 async messages;
       https://gitlab.com/gnutls/gnutls/issues/704 CVE-2019-3836
       GNUTLS-SA-2019-03-27
Checksums-Sha1: 
 f6e602399dd743c600437e0612a4afc103b049fd 3328 gnutls28_3.6.7-1.dsc
 71f73b9829e44c947bb668b25b8b2e594a065345 8153728 gnutls28_3.6.7.orig.tar.xz
 5911d8f00c70e65d27f8d5244c37ae3b04b6cae7 534 gnutls28_3.6.7.orig.tar.xz.asc
 acbd0a5d96b8e2641bf6b87f05e9120870940faf 66956 gnutls28_3.6.7-1.debian.tar.xz
Checksums-Sha256: 
 07e138799c8c1b7c3924fb98d83bd6358a4c8835cc1b9732342d34e1ea640335 3328 gnutls28_3.6.7-1.dsc
 5b3409ad5aaf239808730d1ee12fdcd148c0be00262c7edf157af655a8a188e2 8153728 gnutls28_3.6.7.orig.tar.xz
 a14d0a7b9295b65ae797a70f8e765024a2e363dca03d008bfce0aec2b3f292b0 534 gnutls28_3.6.7.orig.tar.xz.asc
 29cd55e0c3145583bec6282f015e7f063cce0aa70038cb39f87255051d7535fd 66956 gnutls28_3.6.7-1.debian.tar.xz
Files: 
 dfb441881692acea5f152bcd710157bf 3328 libs optional gnutls28_3.6.7-1.dsc
 c4ac669c500df939d4fbfea722367929 8153728 libs optional gnutls28_3.6.7.orig.tar.xz
 13b4d4d680c451c29129191ae9250529 534 libs optional gnutls28_3.6.7.orig.tar.xz.asc
 3b20524119153b0418d85aad79d68886 66956 libs optional gnutls28_3.6.7-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=kV+0
-----END PGP SIGNATURE-----
News for package gnutls28
