-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 15 Jun 2024 13:22:35 +0200
Source: gnutls28
Binary: gnutls-doc
Architecture: all
Version: 3.7.9-2+deb12u3
Distribution: bookworm
Urgency: medium
Maintainer: all Build Daemon (x86-csail-02) <buildd_all-x86-csail-02@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-doc - GNU TLS library - documentation and examples
Closes: 1067463 1067464
Changes:
 gnutls28 (3.7.9-2+deb12u3) bookworm; urgency=medium
 .
   * Update to 3.7.11:
     + Replace 60-auth-rsa_psk-side-step-potential-side-channel.patch
       61-x509-detect-loop-in-certificate-chain.patch
       62-rsa-psk-minimize-branching-after-decryption.patch with versions from
       gnutls_3_7_x branch instead of manual backports from 3.8.x.
     + Add 53-fips-fix-checking-on-hash-algorithm-used-in-ECDSA.patch (Fix
       checking on hash algorithm used in ECDSA in FIPS mode) and
       54-fips-mark-composite-signature-API-not-approved.patch (Mark composite
       signature API non-approved in FIPS mode.) to allow
       straight cherry-picking of later patches.
     + 63_01-gnutls_x509_trust_list_verify_crt2-remove-length-lim.patch
       libgnutls: Fixed a bug where certtool crashed when verifying a
       certificate chain with more than 16 certificates. Reported by William
       Woodruff (#1525) and yixiangzhike (#1527).  [GNUTLS-SA-2024-01-23, CVSS:
       medium] [CVE-2024-28835] Closes: #1067463
     + 63_02-nettle-avoid-normalization-of-mpz_t-in-deterministic.patch
       libgnutls: Fix side-channel in the deterministic ECDSA.
       Reported by George Pantelakis (#1516).  [GNUTLS-SA-2023-12-04, CVSS:
       medium] [CVE-2024-28834] Closes: #1067464
     + 63_03-serv-fix-memleak-when-a-connected-client-disappears.patch
       Fix a memleak in gnutls-serv when a connected client disappears.
     + 63_04-lib-fix-a-segfault-in-_gnutls13_recv_end_of_early_da.patch
       Fix a segfault in _gnutls13_recv_end_of_early_data().
     + 63_05-lib-fix-a-potential-segfault-in-_gnutls13_recv_finis.patch
       Fix a potential segfault in _gnutls13_recv_finished().
Checksums-Sha1:
 305bd348e7e4ffe8cddeba73ab1ccdf322e0381c 4842456 gnutls-doc_3.7.9-2+deb12u3_all.deb
 efcd0f974532060dc6a49503fa91fb88b82500df 9568 gnutls28_3.7.9-2+deb12u3_all-buildd.buildinfo
Checksums-Sha256:
 900c375df36d692ce3b23eed1af957280fd845b76cf6396f4b358bcf34aa0c92 4842456 gnutls-doc_3.7.9-2+deb12u3_all.deb
 138029ebf07b31e475faa07db296c76f9b5133ca9918f8f8f841d671acd76678 9568 gnutls28_3.7.9-2+deb12u3_all-buildd.buildinfo
Files:
 6431e714d4306048fe278b8cf7fcca1c 4842456 doc optional gnutls-doc_3.7.9-2+deb12u3_all.deb
 0406dec2ba1e4f7dec57086643a64a48 9568 libs optional gnutls28_3.7.9-2+deb12u3_all-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=IitA
-----END PGP SIGNATURE-----