-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 08 Feb 2025 16:19:41 +0100
Source: gnutls28
Architecture: source
Version: 3.8.9-1
Distribution: experimental
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Changes:
gnutls28 (3.8.9-1) experimental; urgency=medium
.
* New upstream version.
+ libgnutls: Fix potential DoS in handling certificates with numerous
name constraints, as a follow-up of CVE-2024-12133 in libtasn1. The
bundled copy of libtasn1 has also been updated to the latest 4.20.0
release to complete the fix. Reported by Bing Shi (#1553).
[GNUTLS-SA-2025-02-07, CVSS: medium] [CVE-2024-12243]
+ Unfuzz 14_version_gettextcat.diff.
+ Update copyright information.
+ Let ./configure check for python on Debian builds to run cligen during
build-time.
Checksums-Sha1:
07663b2922970e4fcb7fe1d04009382240e5d8c0 3236 gnutls28_3.8.9-1.dsc
4bacfbfcba06b67e91bbd3535c275b04ef89a61f 6847364 gnutls28_3.8.9.orig.tar.xz
2d96a7aa8a204014dc40b14030b9120edad27174 833 gnutls28_3.8.9.orig.tar.xz.asc
5a459e3433550a60faf0dd053a8fa981b3ba1e89 78416 gnutls28_3.8.9-1.debian.tar.xz
Checksums-Sha256:
e61455e614c123603859432c1f40ca9a106fbbb496d53a7105623aac48c69c4e 3236 gnutls28_3.8.9-1.dsc
69e113d802d1670c4d5ac1b99040b1f2d5c7c05daec5003813c049b5184820ed 6847364 gnutls28_3.8.9.orig.tar.xz
7631d47762865d4ef494492cca794cf0fe6a8be892a4aa02f362ae29006d3054 833 gnutls28_3.8.9.orig.tar.xz.asc
689e78fa041d2080b5f905fc3e4b86bf8adeac82c717bd70abcef62bbea36ca3 78416 gnutls28_3.8.9-1.debian.tar.xz
Files:
05f03856914c4a71e4652c9623674a80 3236 libs optional gnutls28_3.8.9-1.dsc
33f4c800c20af2983c45223a803da865 6847364 libs optional gnutls28_3.8.9.orig.tar.xz
70e70e5e8822e3649e5e07e3cb87c5cd 833 libs optional gnutls28_3.8.9.orig.tar.xz.asc
4df91458765f16eda02d8ee493d6d892 78416 libs optional gnutls28_3.8.9-1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=TkHx
-----END PGP SIGNATURE-----
