Debian Package Tracker

From: Andreas Metzler <ametzler@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted libgcrypt20 1.7.8-1 (source) into unstable
Date: Thu, 29 Jun 2017 16:51:08 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 29 Jun 2017 18:27:03 +0200
Source: libgcrypt20
Binary: libgcrypt20-doc libgcrypt20-dev libgcrypt20 libgcrypt20-udeb libgcrypt11-dev libgcrypt-mingw-w64-dev
Architecture: source
Version: 1.7.8-1
Distribution: unstable
Urgency: high
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description: 
 libgcrypt11-dev - transitional libgcrypt11-dev package
 libgcrypt20-dev - LGPL Crypto library - development files
 libgcrypt20-doc - LGPL Crypto library - documentation
 libgcrypt20 - LGPL Crypto library - runtime library
 libgcrypt20-udeb - LGPL Crypto library - runtime library (udeb)
 libgcrypt-mingw-w64-dev - LGPL Crypto library - Windows development
Changes:
 libgcrypt20 (1.7.8-1) unstable; urgency=high
 .
   * Fix 25_norevisionfromgit.diff to let ./configure generate a version-string
     without -beta suffix. LP: #1700157
   * New upstream version.
     + Mitigate a flush+reload side-channel attack on RSA secret keys dubbed
       "Sliding right into disaster".  For details see
       <https://eprint.iacr.org/2017/627>.  [CVE-2017-7526]
Checksums-Sha1: 
 86286bb8416a38618304f39b93038e22807a9652 2914 libgcrypt20_1.7.8-1.dsc
 65a4a495aa858483e66868199eaa8238572ca6cd 2897853 libgcrypt20_1.7.8.orig.tar.bz2
 1170aee640280e1dbf327ce7f4a4954220b9db78 310 libgcrypt20_1.7.8.orig.tar.bz2.asc
 94482b2580422c3d627608d3c72a29d2397fcccf 25920 libgcrypt20_1.7.8-1.debian.tar.xz
Checksums-Sha256: 
 6b69acfc55b9b5814c3f89667ae26264e675d7c41ca43a6b49c85fc87fa66dd6 2914 libgcrypt20_1.7.8-1.dsc
 948276ea47e6ba0244f36a17b51dcdd52cfd1e664b0a1ac3bc82134fb6cec199 2897853 libgcrypt20_1.7.8.orig.tar.bz2
 7785a7b8f861b8742f64c27a08de8aa27cb6f22af8884e5252602051544085db 310 libgcrypt20_1.7.8.orig.tar.bz2.asc
 efe8635f0fc07a8b3318c4a7fcd8167594af87169fbd491d1e2fdfa0b36a9b42 25920 libgcrypt20_1.7.8-1.debian.tar.xz
Files: 
 7795f86db3512f86fb8f71a698db2870 2914 libs optional libgcrypt20_1.7.8-1.dsc
 34fd2e6d230cbe56799cdf7df05f56c5 2897853 libs optional libgcrypt20_1.7.8.orig.tar.bz2
 545e10136c2a7541f9d3009b179f3876 310 libs optional libgcrypt20_1.7.8.orig.tar.bz2.asc
 b7d21eee9e3adb150ebdb94d3fd77727 25920 libs optional libgcrypt20_1.7.8-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=lvM3
-----END PGP SIGNATURE-----
News for package libgcrypt20
