-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 20 Jan 2024 07:56:15 +0100 Source: gnutls28 Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx28 libgnutlsxx28-dbgsym Architecture: i386 Version: 3.7.1-5+deb11u5 Distribution: bullseye Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-dane0 - GNU TLS library - DANE security support libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls28-dev - GNU TLS library - development files libgnutls30 - GNU TLS library - main runtime library libgnutlsxx28 - GNU TLS library - C++ runtime library Closes: 1061045 1061046 Changes: gnutls28 (3.7.1-5+deb11u5) bullseye; urgency=medium . * Cherrypick two CVE fixes from 3.8.3: Fix assertion failure when verifying a certificate chain with a cycle of cross signatures. CVE-2024-0567 GNUTLS-SA-2024-01-09 Closes: #1061045 Fix more timing side-channel inside RSA-PSK key exchange. CVE-2024-0553 GNUTLS-SA-2024-01-14 Closes: #1061046 Checksums-Sha1: 5e2e40ed39fc140e8bb16a3685c19542bfe8b167 764780 gnutls-bin-dbgsym_3.7.1-5+deb11u5_i386.deb d233e9ed3ddc92937a75f1f0d758f4e83c2134d6 650284 gnutls-bin_3.7.1-5+deb11u5_i386.deb 349320254c4887e3792e4e3f470ce4446efafb15 10966 gnutls28_3.7.1-5+deb11u5_i386-buildd.buildinfo a35cafdd4514f492cc498cc63673e738ab975859 216184 guile-gnutls-dbgsym_3.7.1-5+deb11u5_i386.deb 08305660e955fb7306722a29049622558a77c15c 451232 guile-gnutls_3.7.1-5+deb11u5_i386.deb c5515542d557d229275f4cc4a4b2a3c1f2971df4 61120 libgnutls-dane0-dbgsym_3.7.1-5+deb11u5_i386.deb ca924797b67cf073f18bc67c124838f8d9278241 395716 libgnutls-dane0_3.7.1-5+deb11u5_i386.deb 6f2cf6cab685f120e3347e70080da5c9b6ca51ac 60992 libgnutls-openssl27-dbgsym_3.7.1-5+deb11u5_i386.deb c352f75224a3c7e2f8b8387247af61db5dcd1fb7 395920 libgnutls-openssl27_3.7.1-5+deb11u5_i386.deb c53f32b7d73ebca801ac26b794194919d77beed8 1364384 libgnutls28-dev_3.7.1-5+deb11u5_i386.deb 76a352f462730d9ec6eff0bfc76e8243a7cbfce5 1584184 libgnutls30-dbgsym_3.7.1-5+deb11u5_i386.deb bfd83cc903b58d56b71b45445f9bad20da3dde33 1345560 libgnutls30_3.7.1-5+deb11u5_i386.deb 1844cd5a4776632615f36a4b4245d1de2c49d9fe 46304 libgnutlsxx28-dbgsym_3.7.1-5+deb11u5_i386.deb 25abdcfc259839847ca6daa6f4b794f7f915501f 15432 libgnutlsxx28_3.7.1-5+deb11u5_i386.deb Checksums-Sha256: 800459169908ba890332fd92ee7986faefbfa9ab7fe552deee88caa2b661b6dc 764780 gnutls-bin-dbgsym_3.7.1-5+deb11u5_i386.deb 7bcfe7c49edd59cd60c65cedecf0f63c7e2c59baa4242a3aba6b96d468bea607 650284 gnutls-bin_3.7.1-5+deb11u5_i386.deb 8ac98f50237ba33a5b9e4e826471c66e884a60c0c87451ab0e4a1a05455850bd 10966 gnutls28_3.7.1-5+deb11u5_i386-buildd.buildinfo 80e2315498d64adbe183d7cd77893766a0f9737b36b5528dab86d03b40b5bc7d 216184 guile-gnutls-dbgsym_3.7.1-5+deb11u5_i386.deb a14434b9ab078083a7d23e6ca4c5b298c2c108e249448316480de9e09f21b011 451232 guile-gnutls_3.7.1-5+deb11u5_i386.deb cdf3bdc7540ceb2c261f8ab292cedfbb4f11179d23af96bb2779c7efb6e73ad9 61120 libgnutls-dane0-dbgsym_3.7.1-5+deb11u5_i386.deb 660caad7f47ec069fe6a803b38c1b94396a15e5a173d6e8cad04bb9e45d4d135 395716 libgnutls-dane0_3.7.1-5+deb11u5_i386.deb 4cbd9fd6b719f3f5d5d835da395355f083b30a6f174df15403d5e91db6a2eb07 60992 libgnutls-openssl27-dbgsym_3.7.1-5+deb11u5_i386.deb 11868b8a9405d319735640ba935575597bdfb6cd3abdcf1cc355ed57e0919fbf 395920 libgnutls-openssl27_3.7.1-5+deb11u5_i386.deb d78a7d5a354becd88c50d44a750fa3bd3d1be3e2f1ab153489cebf9185e933c2 1364384 libgnutls28-dev_3.7.1-5+deb11u5_i386.deb f240bfe67f31b884481f2dd95e214fb52d00b64bfc0a44059a2898fef1e0ad9a 1584184 libgnutls30-dbgsym_3.7.1-5+deb11u5_i386.deb 413c01492f2c77c53582b124e4f8b7ac3b6504905f2961a107c4891053ec3591 1345560 libgnutls30_3.7.1-5+deb11u5_i386.deb 6997d09882ac81f2cd100f474842ac26719dce8f08c45e1dcb143da16172f3bb 46304 libgnutlsxx28-dbgsym_3.7.1-5+deb11u5_i386.deb 836de9d305eea48730e013add0f18ef258d77106dab5e4043c242df0152efc06 15432 libgnutlsxx28_3.7.1-5+deb11u5_i386.deb Files: dd00007599a876309ae2df4bc73887f5 764780 debug optional gnutls-bin-dbgsym_3.7.1-5+deb11u5_i386.deb fb5280c9b4c956bdf46145477d59f952 650284 net optional gnutls-bin_3.7.1-5+deb11u5_i386.deb d7d0b1f16ba1d230fa6ec5f31ee3a734 10966 libs optional gnutls28_3.7.1-5+deb11u5_i386-buildd.buildinfo de2a6b883a28b053dfd3abb6e85ac875 216184 debug optional guile-gnutls-dbgsym_3.7.1-5+deb11u5_i386.deb 13273c4489f86bc1ff5b877aa123f2fa 451232 lisp optional guile-gnutls_3.7.1-5+deb11u5_i386.deb 01fa49031cacc313eb5a99577098a043 61120 debug optional libgnutls-dane0-dbgsym_3.7.1-5+deb11u5_i386.deb 52a3d1245db9737ae57181a6498364f9 395716 libs optional libgnutls-dane0_3.7.1-5+deb11u5_i386.deb fb368ebbd767c91c0d461449cbfa2bc9 60992 debug optional libgnutls-openssl27-dbgsym_3.7.1-5+deb11u5_i386.deb 005238fbc4afdd3d82dd592764ad9a81 395920 libs optional libgnutls-openssl27_3.7.1-5+deb11u5_i386.deb 8576d67be10f30c1e39c2452198df04b 1364384 libdevel optional libgnutls28-dev_3.7.1-5+deb11u5_i386.deb afd1177c7f917612d9c86dff8d95f982 1584184 debug optional libgnutls30-dbgsym_3.7.1-5+deb11u5_i386.deb 682996b878505a418b9c6332fe8a1d04 1345560 libs optional libgnutls30_3.7.1-5+deb11u5_i386.deb e4a335e95af4f7e1426b2ab727f3cbc7 46304 debug optional libgnutlsxx28-dbgsym_3.7.1-5+deb11u5_i386.deb f253742f2410735f2f2de45276efb923 15432 libs optional libgnutlsxx28_3.7.1-5+deb11u5_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErEDrIdpJkzFMm6K+PyQET5WCY90FAmYMc5YACgkQPyQET5WC Y92C+Q/8DbVUbBA7XCD8ADmg18HzTzdOJ+zVSXiYH5YjcESsvWnVQt5o0FwKun/j n8dhceBbSPP53Jj6aADVYBuB2k1M6StmO1RbfAf7EX82XgpO7zmw4wmw0mGheYx5 gTU4Dj5upnIvO2iDA9Jam7hbTVeLGoHtVo1GFtedw8Z9dPKonqIPHdn5E9cfsKMD IiaY0g68W01FmFKiQq1WpXEkqpF2NXFRwnbPnzFRSROvoc+NGCRxYrt9ejSGaQty WptKSYdinpQEFuLpNCTH4uMECwdT6u1oRECzxS3PbpIVwcpmNvxPAKNjJ47+ajew 1I5B2mVLjuPKWNhgjZB8A44pmHfIj00w7LzI3uk69CP02lAVA4fqme5Do7mldZzO Jro7i23vxB+tNzTqvOnLMWGMD0Eif30hLuunRXfLv01BkbrV4+pPRT3ufjPqmBxT c7yQ/+Pzp6iRzY+9nPW72lDBE2vv7Ia7GrTWprwjlcvOOS1J6PMdCL0yfuDPFM31 UxQ+mbBlGTAz+RJ/bcfPzaBoWsgctY8VoQDAbVc2wsinF2NFf1qEtFinY7s0Rqtt ptKNVmPLzKFZxdUR8o8Gy9SYjGU/KLl8ffJQHRyHMhM3KdqhzTpOux/XLZIrg3OF fslvrT+lopR+KYwq05AUDZ8JC3gXky9A/F7DIL4tmvVxzHLwcmg= =bQK9 -----END PGP SIGNATURE-----