Debian Package Tracker

From: Andreas Metzler <ametzler@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted gnutls28 3.5.8-5 (source) into unstable
Date: Tue, 07 Mar 2017 19:05:46 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 07 Mar 2017 19:07:31 +0100
Source: gnutls28
Binary: libgnutls28-dev libgnutls30 gnutls-bin gnutls-doc libgnutlsxx28 libgnutls-openssl27 libgnutls-dane0
Architecture: source
Version: 3.5.8-5
Distribution: unstable
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description: 
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.5.8-5) unstable; urgency=medium
 .
   * 35_01_z_opencdk-read-packet.c-corrected-typo-in-type-cast.patch: Fix typo
     in 35_01_opencdk-improved-error-code-checking-in-the-stream-r.patch.
   * 35_07_Enforce-the-max-packet-length-for-OpenPGP-subpackets.patch:
     Addressed large allocation in OpenPGP certificate parsing, that could lead
     in out-of-memory condition. Issue found using oss-fuzz project, and was
     fixed by Alex Gaynor.
     https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392
     [GNUTLS-SA-2017-3C]
Checksums-Sha1: 
 e3585bdbeab97b2f53dd10eed728b0408d682239 3258 gnutls28_3.5.8-5.dsc
 f83af3a971bd081d4a3091159d230e3885fb9cf6 104860 gnutls28_3.5.8-5.debian.tar.xz
Checksums-Sha256: 
 1609d51af0485c909648209e36d7b2d256680f617d1ce122e3687aeaf56e1266 3258 gnutls28_3.5.8-5.dsc
 db08c67dd060c6c921026e0c4446d7168748b7972bafa593109ed6409c754081 104860 gnutls28_3.5.8-5.debian.tar.xz
Files: 
 4cf9c6d01884dd7073ce31cc4de501da 3258 libs optional gnutls28_3.5.8-5.dsc
 4a111a3684bcdb4fd0f70bd9535eebbe 104860 libs optional gnutls28_3.5.8-5.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAli+/csACgkQpU8BhUOC
FIRYOBAAobQqUmblnjhsAdW+9jZrFloyRWeVFl34ugA9Dqe7xeSb314GnFB+vwtW
ztUmqBvQlS9eKIJXiQkNd+aDxOEDD5rHw6qZLZiu3i5QQa7uCu62AEE5c6aNynRt
4EQjMZ1BPVdEjbLmCfUWimJOPebBlU0hWF+NYjJo8Dac2bQaEhnMcC0VT1Rul5fj
MAiD1/YUb2hQgT7lnMqipBgU7aFVgZilKBg7rHJjpM+n0+F1WBHfWXsG3gjP0Rnf
Bo4nKP2X9BZTx7mDGudv2WtL58ZEq0sh8w2ovJLqTT8nSG1uE3uitFPXElWCtTbE
t2cFH6LS8P94gelX8tafF/cfF1G5jDN27rppHqzLN5rAnBjRlabCNpJF+Rpx/12X
pFJryjxacke+zF6NoqDsU5nWfrQJMkiSxmNidIv3XVdYbXTv02nB+RN37JzPg0nZ
iJzoilj4Ejdd7XaHVWPOiKA0do9XY8MsMztBSRa90snmfOE9Ke9h2Y8M//CoQCAI
1ibGvXGuSdka7w6yFkYWK5amVrZz3I2bSIyPtpW9wILrZKt6Iw7p2ZZiNZfIpatI
I9KHUunuzbcAG+4Mr736BINnEr+et2lgq4N2gmGp96CsKp3smnxyXeuEwS3CF0pJ
OvbfxCiS0r5Ur8PcHZLsKQVbl5GPc0m5IaErDAAYD1O0LhP+vFo=
=npWX
-----END PGP SIGNATURE-----
News for package gnutls28
