Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted mbedtls 2.16.9-0.1+deb11u1 (source) into oldstable-security
Date: Mon, 30 Jun 2025 17:40:22 +0000
Signed by: Andrew Shadura <andrewsh@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 30 Apr 2025 17:35:02 +0200
Source: mbedtls
Architecture: source
Version: 2.16.9-0.1+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: James Cowgill <jcowgill@debian.org>
Changed-By: Andrej Shadura <andrewsh@debian.org>
Changes:
 mbedtls (2.16.9-0.1+deb11u1) bullseye-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * Apply security fixes from the upstream:
     - CVE-2021-24119: Fix a side-channel vulnerability in base64 PEM file
       decoding allowing system-level attackers to obtain information about
       secret RSA keys
     - CVE-2021-36647: Fix a side-channel vulnerability allowing attackers
       to recover private keys used in RSA
     - CVE-2021-43666: Fix DoS in mbedtls_pkcs12_derivation function when
       an input password's length is 0
     - CVE-2021-44732: Fix double free in certain out-of-memory conditions
     - CVE-2022-46392: Fix RSA side channel vulnerability
Checksums-Sha1:
 585de90a18be434f9c03423b88c6e645540cd397 1652 mbedtls_2.16.9-0.1+deb11u1.dsc
 bef22bfa0f94162edea6ae3b39df919d55869a9e 38356 mbedtls_2.16.9-0.1+deb11u1.debian.tar.xz
 ba1cc53fab1e36f5e80f4e395e741159c65adfc7 6651 mbedtls_2.16.9-0.1+deb11u1_source.buildinfo
Checksums-Sha256:
 b8bf8d420437c5b988992580ab5d3439265369964ea2aa2b6a579a29f33ef291 1652 mbedtls_2.16.9-0.1+deb11u1.dsc
 af5d9566acc4fce32e650b7bbd6817152abe9d2d409ab8820264716365e73e69 38356 mbedtls_2.16.9-0.1+deb11u1.debian.tar.xz
 3a4480da697d9d91ae1ab50b1b7cfc07a910627ac530f3dd25f34f814d773893 6651 mbedtls_2.16.9-0.1+deb11u1_source.buildinfo
Files:
 28c28e02ed449e965f8d06cd452d2992 1652 libs optional mbedtls_2.16.9-0.1+deb11u1.dsc
 aa462eccae4e99c43fe1ef56e7349216 38356 libs optional mbedtls_2.16.9-0.1+deb11u1.debian.tar.xz
 28d8ad53cd8eb71a23550244bc15e946 6651 libs optional mbedtls_2.16.9-0.1+deb11u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQSD3NF/RLIsyDZW7aHoRGtKyMdyYQUCaGLHbAAKCRDoRGtKyMdy
YctjAQCPYva0hcMbO/j1Il1NQ+rmKyNpRpb47DBvSpVN8js1TQEA8kff+Uo88PEr
P6a/RqAkswvE3gPCgl91jYUDKygxfgM=
=Xpe2
-----END PGP SIGNATURE-----

News for package mbedtls