Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted gnutls28 3.5.8-5+deb9u5 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Date: Fri, 03 Jul 2020 19:02:29 +0000
Signed by: Andreas Metzler <ametzler@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 26 Jun 2020 07:31:44 +0200
Source: gnutls28
Architecture: source
Version: 3.5.8-5+deb9u5
Distribution: stretch
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Changes:
 gnutls28 (3.5.8-5+deb9u5) stretch; urgency=medium
 .
   * Pull fixes for CVE-2019-3829 / [GNUTLS-SA-2019-03-27, #694].
     + 40_casts_related_to_fix_CVE-2019-3829.patch
     + 40_rel3.6.7_01-Automatically-NULLify-after-gnutls_free.patch
     + 40_rel3.6.7_01-fuzz-added-fuzzer-for-certificate-verification.patch
     + 41_use_datefudge_to_trigger_CVE-2019-3829_testcase.diff
   * More important fixes:
     + 43_rel3.6.14_10-session_pack-fix-leak-in-error-path.patch
     + 44_rel3.6.14_10-Update-session_ticket.c-to-add-support-for-zero-leng.patch
       Handle zero length session tickets, fixing connection errors on TLS1.2
       sessions to some big hosting providers. (See LP 1876286)
Checksums-Sha1: 
 55c52cfd69dbee19f53123bf521385faf6b3c0ee 3286 gnutls28_3.5.8-5+deb9u5.dsc
 64a3623dc2b9b5d7aba1d4d2db0c8c36ca6cac84 116684 gnutls28_3.5.8-5+deb9u5.debian.tar.xz
Checksums-Sha256: 
 2645e4bf3186f864048d876cd944ef0eb15222f648994b4028497aa03a98328e 3286 gnutls28_3.5.8-5+deb9u5.dsc
 3b26b1c9eb7010e05a3293dd61db8788d5c7e2c206062e427cdcf14ccf29dc71 116684 gnutls28_3.5.8-5+deb9u5.debian.tar.xz
Files: 
 b38a636f6a57b6c775a7a9dd76037218 3286 libs optional gnutls28_3.5.8-5+deb9u5.dsc
 80bf9d64cfd99df77156fc74dd6f92ca 116684 libs optional gnutls28_3.5.8-5+deb9u5.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=y/zB
-----END PGP SIGNATURE-----

News for package gnutls28