-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 07 Nov 2016 11:34:41 +0100 Source: cryptsetup Binary: cryptsetup cryptsetup-bin libcryptsetup4 libcryptsetup-dev cryptsetup-udeb libcryptsetup4-udeb Architecture: source amd64 Version: 2:1.7.3-2 Distribution: unstable Urgency: medium Maintainer: Debian Cryptsetup Team <pkg-cryptsetup-devel@lists.alioth.debian.org> Changed-By: Jonas Meurer <mejo@debian.org> Description: cryptsetup - disk encryption support - startup scripts cryptsetup-bin - disk encryption support - command line tools cryptsetup-udeb - disk encryption support - commandline tools (udeb) (udeb) libcryptsetup-dev - disk encryption support - development files libcryptsetup4 - disk encryption support - shared library libcryptsetup4-udeb - disk encryption support - shared library (udeb) (udeb) Changes: cryptsetup (2:1.7.3-2) unstable; urgency=medium . [ Guilhem Moulin ] * debian/README.Debian: update authorized_keys(5) path, incorrect since 2:1.7.2-1, for remote unlocking at initramfs stage using the dropbear SSH server. . [ Jonas Meurer ] * debian/initramfs/cryptroot-script: sleep after max passphrase attempts. This mitigates local brute-force attacks and addresses CVE-2016-4484. Thanks to Ismael Ripoll for discovery and report. - decrease $count by one in tries loop if unlocking was successful. - warn and sleep for 60 seconds if the maximum allowed attempts of unlocking (configured with crypttab option tries, default=3) are reached. Checksums-Sha1: de84cc13619691207aaa76c4359666d29472139d 2676 cryptsetup_1.7.3-2.dsc d02ce5fd70dba3b588629d8e4cb1e67d7a03507d 90460 cryptsetup_1.7.3-2.debian.tar.xz 38d7505f2cf88b5f65867d371929cd518250e800 112618 cryptsetup-bin-dbgsym_1.7.3-2_amd64.deb 974fb43aa8ade7c801ee22a1ce5601b7716257ee 219672 cryptsetup-bin_1.7.3-2_amd64.deb 49080a6c405163386e303f385b125fe29274769c 17050 cryptsetup-dbgsym_1.7.3-2_amd64.deb 088f3ef7498c8c5148486626218d7ae36c5f42bd 38930 cryptsetup-udeb_1.7.3-2_amd64.udeb a6bf33dc23be69e5c52338173d44b20675fedb26 7454 cryptsetup_1.7.3-2_20161107T124448z-182a7dce.buildinfo fe8f6ca1d71e7bbdc9151cb9e291869c0fe45e5c 169474 cryptsetup_1.7.3-2_amd64.deb 1b3e1f28a67b2def77ebdfd14eb695a1d9aa76db 53598 libcryptsetup-dev_1.7.3-2_amd64.deb 3030eb3c812e228c3d152239f01ec49f6e61369a 174838 libcryptsetup4-dbgsym_1.7.3-2_amd64.deb 564e52ecece66bb07ac6d18f3c39de4bb68c2363 65542 libcryptsetup4-udeb_1.7.3-2_amd64.udeb 6b5441448ec1995ae7df4e7dc5bf9f1c7d47d50c 107310 libcryptsetup4_1.7.3-2_amd64.deb Checksums-Sha256: e287171acb08e760d2b31d4d39d91154ca449a1530b3606466640d506ea902d5 2676 cryptsetup_1.7.3-2.dsc a9caea1247af13f52cc754663d46e4ddb93f56dfc76c977bb3d6bcad039015a7 90460 cryptsetup_1.7.3-2.debian.tar.xz d3c92bcce236a5452080416252de9dc3e382ad75d65f88f99089e3ea50627dcc 112618 cryptsetup-bin-dbgsym_1.7.3-2_amd64.deb b26241d0c43ca3ac5257c8ce3a2a07ae5cb4d1b0a34ffda5527216d8daa7fdc2 219672 cryptsetup-bin_1.7.3-2_amd64.deb aa2b25db7523d1d71cf830642b87ec899683d2d1227cca6a9d70c5f454889149 17050 cryptsetup-dbgsym_1.7.3-2_amd64.deb a9bb084a7fe650c625ed8588b812c4ce1ce1355cbac0cf66f8aacec3de97ec4d 38930 cryptsetup-udeb_1.7.3-2_amd64.udeb eca9e5b36f4e878a67865163d7a56ed8952b6afdf968ba737952e13b7caa18b6 7454 cryptsetup_1.7.3-2_20161107T124448z-182a7dce.buildinfo 17ec124ebea58b8f2785ac4295576e13220838740011a6486ad005056a2cdc67 169474 cryptsetup_1.7.3-2_amd64.deb 8813a81cf7d780e10bed2fcaec7792c0f0df5a24f4d5b038ef860742c6e40aac 53598 libcryptsetup-dev_1.7.3-2_amd64.deb 325d4c5d50d6398720aeff4b62ca9fce962b8ffec39dddb9813166256932d4d8 174838 libcryptsetup4-dbgsym_1.7.3-2_amd64.deb cf8e01a0bf61a7ee2d9a930eb016aa8e080668d5b6258d6fc75c57e0c88fa6ac 65542 libcryptsetup4-udeb_1.7.3-2_amd64.udeb cd59b74a5a2072291f2d2f139a1b5989a3dde6cf188a6fb807df42f34c8203af 107310 libcryptsetup4_1.7.3-2_amd64.deb Files: 8c38016ad10ccc2c0471019f40c163b6 2676 admin optional cryptsetup_1.7.3-2.dsc 364625c347706fe5bf1c80b6a8fa01a4 90460 admin optional cryptsetup_1.7.3-2.debian.tar.xz 537ead4daa0880421207c26effcc10a0 112618 debug extra cryptsetup-bin-dbgsym_1.7.3-2_amd64.deb 128d00fec41a0624a3d3b502137c5de7 219672 admin optional cryptsetup-bin_1.7.3-2_amd64.deb 41f1f392cc2096db0a6efab9ee4213fb 17050 debug extra cryptsetup-dbgsym_1.7.3-2_amd64.deb 789132827dfa1f39b9766ec3f37ec638 38930 debian-installer optional cryptsetup-udeb_1.7.3-2_amd64.udeb 182a7dce9614249274fbca52eb002f05 7454 admin optional cryptsetup_1.7.3-2_20161107T124448z-182a7dce.buildinfo 150bc99c2833ca5a64bd04b8b45081da 169474 admin optional cryptsetup_1.7.3-2_amd64.deb 5f2cfcf34dbc5bef2a1293b28dd285a6 53598 libdevel optional libcryptsetup-dev_1.7.3-2_amd64.deb ac7f62dfe85bbd97e12401b751d82a60 174838 debug extra libcryptsetup4-dbgsym_1.7.3-2_amd64.deb d6b580839d9760cca7494e4ee6016421 65542 debian-installer optional libcryptsetup4-udeb_1.7.3-2_amd64.udeb 402b498a34aa2ddeaa57ecff1cf0fd1f 107310 libs optional libcryptsetup4_1.7.3-2_amd64.deb -----BEGIN PGP SIGNATURE----- iQIcBAEBCAAGBQJYIHdWAAoJEFJi5/9JEEn+ouIP/j7HjerCptQ+2sp9Pl5hofIi Fbu40JIRgG4o4PglqwvcUghNtg2aN7fzEHRsEMTfCXVnYeyWhjKyURUFEjR+sLKO dx65hUcx0e+bJwNctoXKhz4QwAGhBgSdx4BBJk0kc5epkHscMyWN9oxEbKwuBcl1 PqqQrZMGrHsPV0Oofgl0vZg8ZtpzhAIlr8UMdlp17XiK8tjgJsh+EWvDYXP7OvS2 OB44svyeqt+asX0jqQKAwhqfE62JsuTebaY2MRUbIThXNEa0LZDCAB+61L+55Htw Dr6+fwm0b4KKOt3e7Yht4RFE+dDHXVtIVe2PRqlK+TEmnlNEt9ONM23hepcJ9NWA 2Xm10AoAFTw4Eka/FHNqmoJW3LEmcZk3tot8rnu0ciQ6dp6VPmtofXOmtabB2yns 92LpMWT28obiSXLp3rvDEHmzYJUgOmgnlyqCj41JrRSbYbKaS4FAQ24qdYBnjkPb Esbma0nH9U/DZFTdFUc+7Ovmr3gPW8KnYXTmz5fBGOBHX6DkB/FCTBxZthCuHbvC nEV40OeohwVczkJBVp7LAUmfHHXRmUO3zFDRSkRU6Xi6Wo/NyzplRYQq2/0MCJFs Z5i6EPyQJdb59f254QVd8bPTFa2vVan3hIPLM5QH3wkB64pxVHXK/Pj7qMbwcTTx Doi8AsiVc0u5QX8nGCXB =2+5F -----END PGP SIGNATURE-----