-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: gnutls28 Binary: libgnutls28-dev, libgnutls-deb0-28, libgnutls28-dbg, gnutls-bin, gnutls-doc, guile-gnutls, libgnutlsxx28, libgnutls-openssl27 Architecture: any all Version: 3.3.8-4 Maintainer: Debian GnuTLS Maintainers <[email protected]> Uploaders: Andreas Metzler <[email protected]>, Eric Dorland <[email protected]>, James Westby <[email protected]>, Simon Josefsson <[email protected]> Homepage: http://www.gnutls.org/ Standards-Version: 3.9.5 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-gnutls/gnutls.git Vcs-Git: git://anonscm.debian.org/pkg-gnutls/gnutls.git Build-Depends: debhelper (>= 9), nettle-dev (>= 2.7), zlib1g-dev, libtasn1-6-dev (>= 3.9), autotools-dev, guile-2.0-dev [!ia64 !m68k], datefudge, libp11-kit-dev (>= 0.20.7), pkg-config, chrpath, libidn11-dev, autogen (>= 1:5.16-0), bison, dh-autoreconf, libgmp-dev (>= 2:6), libopts25-dev Build-Depends-Indep: gtk-doc-tools, texinfo (>= 4.8) Build-Conflicts: libgnutls-dev, libp11-kit-dev (= 0.21.2-1) Package-List: gnutls-bin deb net optional arch=any gnutls-doc deb doc optional arch=all guile-gnutls deb lisp optional arch=amd64,arm64,armel,armhf,i386,kfreebsd-amd64,kfreebsd-i386,mips,mipsel,powerpc,ppc64el,s390,s390x,sparc,hurd-i386 libgnutls-deb0-28 deb libs standard arch=any libgnutls-openssl27 deb libs standard arch=any libgnutls28-dbg deb debug extra arch=any libgnutls28-dev deb libdevel optional arch=any libgnutlsxx28 deb libs extra arch=any Checksums-Sha1: 2c07ed3f0ec3284820985085d63311e8b73cb48f 6153180 gnutls28_3.3.8.orig.tar.xz 13a1bc4e52a8655030c97523f2f95db043a68fe0 88156 gnutls28_3.3.8-4.debian.tar.xz Checksums-Sha256: bd4642f180e19632f4ed3a1e62d60c824c7b695f5cddf41a8fba1b272eaef046 6153180 gnutls28_3.3.8.orig.tar.xz 6ecaee8a683672a2b0e8356c47a968cd837a2da9d0d11b97f225e049bbea2977 88156 gnutls28_3.3.8-4.debian.tar.xz Files: b57e6b7630bdba9ea8eb28ff0eb29c2f 6153180 gnutls28_3.3.8.orig.tar.xz 50534c2c37e8a0a2c3ccadf7c2fe97a6 88156 gnutls28_3.3.8-4.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJUY66NAAoJEKVPAYVDghSEs/UQAJzQC8iMEmMpKUYC++sXNXtJ B2E5Yrw0zHHAwsrXFSkFpX+DJ5LCjWlRP/furPjf983pIIz1iNImzCfL/QRC4lK9 TgG1q9hWdx78xGn0DnZQ8ildm3PMXA53ONqE4wpqv5J3C1C2H0rv7c9RoAv0XWYO I1veHK37gVn75jWhGNd1A5wSvcFnmoNRLsgjqLu/TxOUPBEFMCCFqfx7PToerBVr 8CUQ+qLzNNHc8oOJfft8I4dVY9PhXZrQrd281g23fP1VvnZuYFGCuZSfnlQqCS7q vRUWbWNd6574UxTSruWbKbsRi9qjt15OGUCFjVcQ8STBCw0+n4Zce2HFMHWprkDq nCHO6xcsbEFQ3sg4wZWlFzTB9ELzKKj3rHgrbOdMzwle7pdQSm7AWqqeokDM4g46 sB+kIpcpAv1/DDbIpFeYKXP/myWs6gvJJDZ0VvZtkPm0oSYavh2d63o/tQF9cYiX J+TR8nyK0USJFiVqZgbtqRwNoDSRBU91Xho7Xruf2d+jWjFpxU1scGjKMPLB9a5u zwsRroqPfKc+jrRU/3cqMKCgg4dXqZjlY5SHfUXs0yi0I9o1krK2Eefr3XaoTLc3 C/grCJdzPoGp3eF5TeqYEoB6IAqr4fWjXOmTPhZKx8Axmpf+wec9J5j78p8CPmae 4W+q7bhz3tCm3b/GM5/8 =evyi -----END PGP SIGNATURE----- Changes: gnutls28 (3.3.8-4) unstable; urgency=high * Drop 31_fallback_to_RUSAGE_SELF.diff. * 35_recheck_urandom_fd.diff: When gnutls_global_init() is called manually from the application check the urandom fd for validity. Closes: #768841 and takes care of #760476. * 36_less_refresh-rnd-state.diff: do not explicitly refresh rnd state on session deinit. It is already being refreshed during the session lifetime. * 37_X9.63_sanity_check.diff: when exporting curve coordinates to X9.63 format, perform additional sanity checks on input. CVE-2014-8564 / GNUTLS-SA-2014-5. Closes: #769154 * 38_testforsanitycheck.diff adds a test for CVE-2014-8564. (As the test uses a cert in binary der-format which is not representable in a quilt patches and we want to limit debian.tar.xz to modify stuff in debian/ we have some special handling in debian/rules.) -- Andreas Metzler <[email protected]> Wed, 12 Nov 2014 19:31:07 +0100