Debian Package Tracker

From: Andreas Metzler <ametzler@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted libgcrypt20 1.7.6-2 (source) into unstable
Date: Sat, 03 Jun 2017 09:18:36 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 03 Jun 2017 10:58:36 +0200
Source: libgcrypt20
Binary: libgcrypt20-doc libgcrypt20-dev libgcrypt20 libgcrypt20-udeb libgcrypt11-dev libgcrypt-mingw-w64-dev
Architecture: source
Version: 1.7.6-2
Distribution: unstable
Urgency: high
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description: 
 libgcrypt11-dev - transitional libgcrypt11-dev package
 libgcrypt20-dev - LGPL Crypto library - development files
 libgcrypt20-doc - LGPL Crypto library - documentation
 libgcrypt20 - LGPL Crypto library - runtime library
 libgcrypt20-udeb - LGPL Crypto library - runtime library (udeb)
 libgcrypt-mingw-w64-dev - LGPL Crypto library - Windows development
Changes:
 libgcrypt20 (1.7.6-2) unstable; urgency=high
 .
   * Refresh debian/upstream/signing-key.asc, key-expiry-dates bumped.
   * Pull two fixes from gcrypt 1.7.7 bugfix release:
     + 30_gcry177_01-ecc-Store-EdDSA-session-key-in-secure-memory.patch
       Fix possible timing attack on EdDSA session key.
     + 30_gcry177_02-secmem-Fix-SEGV-and-stat-calculation.patch
       Fix long standing bug in secure memory implementation which could lead
       to a segv on free.
Checksums-Sha1: 
 365792d31d47d717028c2fcfbd06854b3f916531 2914 libgcrypt20_1.7.6-2.dsc
 892179e0c80d169436e2cf86f66d79be058ea9e7 26868 libgcrypt20_1.7.6-2.debian.tar.xz
Checksums-Sha256: 
 c8b920793f74a8267613c92d3529969a4309925d4c8574a29c5c1cd9cb4ae9d1 2914 libgcrypt20_1.7.6-2.dsc
 634fd250eb9aa25def1c0cf4ceae25ce43d29b5c7564fa85ecb812737948e168 26868 libgcrypt20_1.7.6-2.debian.tar.xz
Files: 
 eed489853b31d3c183e554177bc9b6f3 2914 libs optional libgcrypt20_1.7.6-2.dsc
 8c5a3aaa6c43cb52bce19a41f1af8c7b 26868 libs optional libgcrypt20_1.7.6-2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=b7zk
-----END PGP SIGNATURE-----
News for package libgcrypt20
