Accepted gnutls11 1.0.16-13.2sarge1 (source i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Mon, 5 Jun 2006 12:28:19 +0200 Source: gnutls11 Binary: libgnutls11 libgnutls11-dev gnutls-bin libgnutls11-dbg Architecture: source i386 Version: 1.0.16-13.2sarge1 Distribution: stable Urgency: low Maintainer: Matthias Urlichs <[EMAIL PROTECTED]> Changed-By: Andreas Metzler <[EMAIL PROTECTED]> Description: gnutls-bin - GNU TLS library - commandline utilities libgnutls11 - GNU TLS library - runtime library libgnutls11-dbg - GNU TLS library - debugger symbols libgnutls11-dev - GNU TLS library - development files Closes: 325971 Changes: gnutls11 (1.0.16-13.2sarge1) stable; urgency=low . * Fix occasional SSL connection setup error. Closes:#325971 Files: d3f5bcf6c526385cb95defcb417384f2 820 devel optional gnutls11_1.0.16-13.2sarge1.dsc df4fa5ad4a9ee8954169dde03c7091ba 345641 devel optional gnutls11_1.0.16-13.2sarge1.diff.gz 57d43737fae7aea1ef5fad59ea66f4c7 370060 libdevel optional libgnutls11-dev_1.0.16-13.2sarge1_i386.deb 83419ab4522cac6b381b196b354b6a17 301596 libs important libgnutls11_1.0.16-13.2sarge1_i386.deb d9e242a05a5ac35d96ce2d9536335662 558144 devel optional libgnutls11-dbg_1.0.16-13.2sarge1_i386.deb c67d8dc8035e8bc5f92411061c07cd1d 206616 net optional gnutls-bin_1.0.16-13.2sarge1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFEittjHTOcZYuNdmMRAgiYAJ4+HFTIay43EiniZq9GrRU9d+L5jwCfa4Cj NgDhc0wxG59zlE1+52eaiRk= =3UGF -END PGP SIGNATURE- Accepted: gnutls-bin_1.0.16-13.2sarge1_i386.deb to pool/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge1_i386.deb gnutls11_1.0.16-13.2sarge1.diff.gz to pool/main/g/gnutls11/gnutls11_1.0.16-13.2sarge1.diff.gz gnutls11_1.0.16-13.2sarge1.dsc to pool/main/g/gnutls11/gnutls11_1.0.16-13.2sarge1.dsc libgnutls11-dbg_1.0.16-13.2sarge1_i386.deb to pool/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge1_i386.deb libgnutls11-dev_1.0.16-13.2sarge1_i386.deb to pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge1_i386.deb libgnutls11_1.0.16-13.2sarge1_i386.deb to pool/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge1_i386.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Accepted gnutls11 1.0.16-13.2sarge2 (source i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sat, 16 Sep 2006 13:23:30 +0200 Source: gnutls11 Binary: libgnutls11 libgnutls11-dev gnutls-bin libgnutls11-dbg Architecture: source i386 Version: 1.0.16-13.2sarge2 Distribution: stable-security Urgency: high Maintainer: Matthias Urlichs <[EMAIL PROTECTED]> Changed-By: Andreas Metzler <[EMAIL PROTECTED]> Description: gnutls-bin - GNU TLS library - commandline utilities libgnutls11 - GNU TLS library - runtime library libgnutls11-dbg - GNU TLS library - debugger symbols libgnutls11-dev - GNU TLS library - development files Changes: gnutls11 (1.0.16-13.2sarge2) stable-security; urgency=high . * Pulled from upstream 1.4.2-->1.4.4: Fix PKCS#1 verification to avoid a variant of Bleichenbacher's Crypto 06 rump session attack. See <http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html> (which is not exactly the same as the problem we fix here). Reported by Yutaka OIWA <[EMAIL PROTECTED]>. . See GNUTLS-SA-2006-4 on http://www.gnutls.org/security.html for more information. CVE-2006-4790 Files: 72116e13ca8af0d4c0420a6a5fba01fb 820 devel optional gnutls11_1.0.16-13.2sarge2.dsc 7b410fa3c563c7988e434a8c8671b3cd 1504638 devel optional gnutls11_1.0.16.orig.tar.gz 46c4495ad9c32f53a362669432b548d0 346146 devel optional gnutls11_1.0.16-13.2sarge2.diff.gz e649a2f476791e825c923003b152484c 370390 libdevel optional libgnutls11-dev_1.0.16-13.2sarge2_i386.deb 7af47286dd7a1fca42f80b1dfd87bb7d 301988 libs important libgnutls11_1.0.16-13.2sarge2_i386.deb c5e07873a863d46892921effa3423038 558658 devel optional libgnutls11-dbg_1.0.16-13.2sarge2_i386.deb 3a6b6996db3db6bd92947fb552b61599 206826 net optional gnutls-bin_1.0.16-13.2sarge2_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFFEEoyXm3vHE4uyloRAnJTAKC0EG58FWZ6CdJMOmFlrQhrf2n1vQCg6/3h SsS7Ovw5foFWlwETy9FIv1M= =UAEP -END PGP SIGNATURE- Accepted: gnutls-bin_1.0.16-13.2sarge2_i386.deb to pool/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_i386.deb gnutls11_1.0.16-13.2sarge2.diff.gz to pool/main/g/gnutls11/gnutls11_1.0.16-13.2sarge2.diff.gz gnutls11_1.0.16-13.2sarge2.dsc to pool/main/g/gnutls11/gnutls11_1.0.16-13.2sarge2.dsc libgnutls11-dbg_1.0.16-13.2sarge2_i386.deb to pool/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_i386.deb libgnutls11-dev_1.0.16-13.2sarge2_i386.deb to pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_i386.deb libgnutls11_1.0.16-13.2sarge2_i386.deb to pool/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_i386.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Accepted findutils 4.2.28-1etch1 (source i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sat, 2 Jun 2007 11:19:57 +0200 Source: findutils Binary: findutils Architecture: source i386 Version: 4.2.28-1etch1 Distribution: stable Urgency: low Maintainer: Andreas Metzler <[EMAIL PROTECTED]> Changed-By: Andreas Metzler <[EMAIL PROTECTED]> Description: findutils - utilities for finding files--find, xargs, and locate Closes: 426862 Changes: findutils (4.2.28-1etch1) stable; urgency=low . * Fixe locate heap buffer overflow when using databases in old format. (CVE-2007-2452) Closes: #426862 Files: e66a379f877524509e29e930ef0a2e3a 673 utils required findutils_4.2.28-1etch1.dsc d8cec49d48263e64ed01398f30073ab8 17956 utils required findutils_4.2.28-1etch1.diff.gz 57e5ff463c362c17f1262d395793e798 350942 utils required findutils_4.2.28-1etch1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGriRYHTOcZYuNdmMRAmGOAJ4pIE8FEKo8RXsr3TC0phFxZhL1OwCeJ8Ux Bcb9v/Fa8QuMKVy2HfNJHdE= =FH+0 -END PGP SIGNATURE- Accepted: findutils_4.2.28-1etch1.diff.gz to pool/main/f/findutils/findutils_4.2.28-1etch1.diff.gz findutils_4.2.28-1etch1.dsc to pool/main/f/findutils/findutils_4.2.28-1etch1.dsc findutils_4.2.28-1etch1_i386.deb to pool/main/f/findutils/findutils_4.2.28-1etch1_i386.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Accepted exim4 4.69-9+lenny3 (source i386 all)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Mon, 24 Jan 2011 19:31:06 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev Architecture: source i386 all Version: 4.69-9+lenny3 Distribution: stable-security Urgency: low Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Closes: 610611 Changes: exim4 (4.69-9+lenny3) stable-security; urgency=low . * 80_4.74_CVE-2011-0017.dpatch (Pulled from upstream git): Check return values of setgid/setuid. This is a privilege escalation vulnerability whereby the Exim run-time user can cause root to append content of the attacker's choosing to arbitrary files. * 80_4.74_deliverylogging.dpatch (Pulled from upstream git): If a non-debug daemon was invoked with a non-whitelisted macro, then logs from after attempting delivery would be silently lost, including for successful delivery. This log-loss bug was introduced as part of the security lockdown for fixing CVE-2010-4345. Closes: #610611 Checksums-Sha1: 60de45cda1c403d636ab751fd9af79fd807386f4 1612 exim4_4.69-9+lenny3.dsc fc393d1dd79f8d81721e975b913966ce5917b5b4 554947 exim4_4.69-9+lenny3.diff.gz 067860f1bf752ad9268c63ef65acf0993090a8d8 988608 exim4-base_4.69-9+lenny3_i386.deb 5c3bfd4841ce2f08b9278628b755a8ddafdb8755 98964 eximon4_4.69-9+lenny3_i386.deb 96700b41e99d9907024167bb7657c2f0c7a3eec5 425278 exim4-daemon-light_4.69-9+lenny3_i386.deb 22c500c5916567d2e191d8a8086b1866e234f37b 473292 exim4-daemon-heavy_4.69-9+lenny3_i386.deb 4904041d9298ded544e1fb2cb57a5624d5ad04d8 675416 exim4-daemon-light-dbg_4.69-9+lenny3_i386.deb bc1eb2a88af52099072edc68863122a87440e6dc 761558 exim4-daemon-heavy-dbg_4.69-9+lenny3_i386.deb 2a1d4af6c3105b79c7b11f5a5ec0a6c70769d4be 265146 exim4-dbg_4.69-9+lenny3_i386.deb bbb01da5d5110ec787a2d8b38a86a29cc56d6db0 71588 exim4-dev_4.69-9+lenny3_i386.deb 14209daa456e864220a288cca665eefb69c0b0c3 351558 exim4-config_4.69-9+lenny3_all.deb 3213aae7462ae7282fb8223174da8deef8b8dcb8 7474 exim4_4.69-9+lenny3_all.deb Checksums-Sha256: 7500e9d2dd653dfd1caf6590ea2343f590e7512f720a76df7f42cfd472b9b6a7 1612 exim4_4.69-9+lenny3.dsc f21e8a8ac683fa5fc63359c0083287d481c46ff3c65210473cafc3b2d0b9e2d4 554947 exim4_4.69-9+lenny3.diff.gz 7b8158e15ed64f245cf46e67c4d2a0695986af290206d5675a5992f656be3d8a 988608 exim4-base_4.69-9+lenny3_i386.deb 1c08a0f44ccf77a2e1d78aa07962dea83bb5a4acc860bd3b4297c6567f234d5c 98964 eximon4_4.69-9+lenny3_i386.deb c3f424279d56176754f2114e2eda5ad3627eaa69e8702d326ac6a8cc61cc8462 425278 exim4-daemon-light_4.69-9+lenny3_i386.deb 2e33e72e63ac62fe8a404372ab1bb0002af99112a8ca9746e91d0df421eb1c5e 473292 exim4-daemon-heavy_4.69-9+lenny3_i386.deb a70015d7801ebd181b65e4ca46d69474ee3ae7c26a20ef0f2578b0e7fa3c7a73 675416 exim4-daemon-light-dbg_4.69-9+lenny3_i386.deb fb5a7811b4247974e3e171854f67ff1cf70a8d134e02dbbaa5d9cea88ad9893a 761558 exim4-daemon-heavy-dbg_4.69-9+lenny3_i386.deb 4b85bd810995fd514c7d74c861694f1e66b8039fa62c133c37120b643217e4d7 265146 exim4-dbg_4.69-9+lenny3_i386.deb 5b56e4a35d3039ec535f887385b29d2912c8f2ba50830a5f271cc1a2ad28d2a3 71588 exim4-dev_4.69-9+lenny3_i386.deb 122a074dfe8c25e13c2c9d2d3af1eb504164938aae8365258264ce1ce2e4af19 351558 exim4-config_4.69-9+lenny3_all.deb f2f302cef7d01c6e98614a41cfa91d8fe0359a5f04d9d3b3c81f4010438a6c4a 7474 exim4_4.69-9+lenny3_all.deb Files: 1d89938c3542d9915c2b10226f040288 1612 mail standard exim4_4.69-9+lenny3.dsc 120cfa7a71e78e91ef51b1f7e089771c 554947 mail standard exim4_4.69-9+lenny3.diff.gz 629ca180a11f2bbfc7a39e985fbc8b45 988608 mail standard exim4-base_4.69-9+lenny3_i386.deb ecef2664ca9eafdb4433b7b8be04a37a 98964 mail optional eximon4_4.69-9+lenny3_i386.deb 4ae0b1890c8bad8f3d32c16eea8174d0 425278 mail standard exim4-daemon-light_4.69-9+lenny3_i386.deb ec90fef354c236cd62de8f12d6342d90 473292 mail optional exim4-daemon-heavy_4.69-9+lenny3_i386.deb 14e07834eddd53f3e7a2635e12c98da6 675416 mail extra exim4-daemon-light-dbg_4.69-9+lenny3_i38
Accepted exim4 4.72-6+squeeze1 (source i386 all)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Thu, 05 May 2011 19:11:00 +0200 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev Architecture: source i386 all Version: 4.72-6+squeeze1 Distribution: stable-security Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Closes: 624670 Changes: exim4 (4.72-6+squeeze1) stable-security; urgency=high . * [82_dkimpercent.diff] Pulled from upstream git. Don't pass DKIM compound log line as format string. CVE-2011-1764. Closes: #624670 Checksums-Sha1: fde07e3632e89ae3e000ccf4d083ff166c245846 1635 exim4_4.72-6+squeeze1.dsc 261c02c95b4d3aada73840b01f836e6874841c44 2009776 exim4_4.72.orig.tar.gz 10de66fbd3fff8e28239c1618e4841b522e4c08a 593095 exim4_4.72-6+squeeze1.debian.tar.gz 58fed0fe866539232fe96ae4968e76cfea97f7dd 1008962 exim4-base_4.72-6+squeeze1_i386.deb dca8211464e50e2c3886a065ef696dda3281d2c1 188468 eximon4_4.72-6+squeeze1_i386.deb 5b0bb330b581db51b262dd29975a2dd51e6b9ba7 549226 exim4-daemon-light_4.72-6+squeeze1_i386.deb 76c77df80195acd53a1cfd390fc7b115ba81ed38 598418 exim4-daemon-heavy_4.72-6+squeeze1_i386.deb 69b681164db9905ca77cba105f5ffc08a25ae790 809608 exim4-daemon-light-dbg_4.72-6+squeeze1_i386.deb ee43fe143f82ce3e4d47bab945cbd7567c821d03 896858 exim4-daemon-heavy-dbg_4.72-6+squeeze1_i386.deb 11799cdb4a7e0875e715fa96eb50139cdd6d896b 354968 exim4-dbg_4.72-6+squeeze1_i386.deb 02e3705913f534b2f8c7b3998dac2693b145c333 160676 exim4-dev_4.72-6+squeeze1_i386.deb 322a56c39d3828b607b231f5726263ff4ea9c23d 464114 exim4-config_4.72-6+squeeze1_all.deb 459affb499c0cd391cda7fd0916116f3a1b6319a 7802 exim4_4.72-6+squeeze1_all.deb Checksums-Sha256: 7e45607e32af4a6aab2d8350cc790b69dafa1907c916f16b399c0f20372de765 1635 exim4_4.72-6+squeeze1.dsc 029c7e78417c6b991c8a505e329854ced4c153b03c51c15748e5b023e691bfcb 2009776 exim4_4.72.orig.tar.gz f9bdd1cb51968cf63af3a67be18f48b425ab4e17530267d9620c4ca3023dbc87 593095 exim4_4.72-6+squeeze1.debian.tar.gz 4bdcfb03d784d897ea4790b4f34fb9a4d4fc944ae05be6477cf8652c4f580de9 1008962 exim4-base_4.72-6+squeeze1_i386.deb ce84ef90bf5bf0ce18a558b0d695de4243dff2532fdb076976ef35636b07e25a 188468 eximon4_4.72-6+squeeze1_i386.deb a5fb55c19bf7f0e9d65663a85ec0d89cefa13d0b970066f0b8ddb02a2a0ab448 549226 exim4-daemon-light_4.72-6+squeeze1_i386.deb 9758c9113b692f1bade881486b36cf9c8c672158a08b59cc8e99b440a9098a14 598418 exim4-daemon-heavy_4.72-6+squeeze1_i386.deb 0929d3c92a935674c513e1f4fb1c4097027f0e51f57ab7667d9db8fe98e5a40b 809608 exim4-daemon-light-dbg_4.72-6+squeeze1_i386.deb bc26e2b216680db48a83eba1f4d88a178a3a2c52224299f9ff21394402da065a 896858 exim4-daemon-heavy-dbg_4.72-6+squeeze1_i386.deb 42136564dd66fdc4f5835c19eddbc54f38da98a5fd076382ff592813c0b4c5f2 354968 exim4-dbg_4.72-6+squeeze1_i386.deb 705f1c47f32511f45bd6785e85c6ecbb6ba8be89180ad28a0d28417f1510409e 160676 exim4-dev_4.72-6+squeeze1_i386.deb 786ca6d8d22e46fbaa4b783185eee2881220661d7c78d6e2a191b99b1490d60b 464114 exim4-config_4.72-6+squeeze1_all.deb 88965f561d9d7f3482c06b31eb11298d1db56db699c5fa0c4fc510b42bdba586 7802 exim4_4.72-6+squeeze1_all.deb Files: 5c784ba7cc4f50a0a86276fb449fb3b6 1635 mail standard exim4_4.72-6+squeeze1.dsc ef5f78399eb75b84ea453e8f8722e2d2 2009776 mail standard exim4_4.72.orig.tar.gz 8c07ddc7b0e1b80fab494046f9695726 593095 mail standard exim4_4.72-6+squeeze1.debian.tar.gz 2cd73f246e871d08f2b6cab1d6b752df 1008962 mail standard exim4-base_4.72-6+squeeze1_i386.deb 40b91c2e2862db2be1c5af1e4ca57813 188468 mail optional eximon4_4.72-6+squeeze1_i386.deb f69e67983be8f68401e8c0d94153fb7a 549226 mail standard exim4-daemon-light_4.72-6+squeeze1_i386.deb 85090c661830075b3ef1eead71b99f07 598418 mail optional exim4-daemon-heavy_4.72-6+squeeze1_i386.deb e67c7bb3ed3f20a412664ada0096b532 809608 debug extra exim4-daemon-light-dbg_4.72-6+squeeze1_i386.deb e7498f70d30054d4aeb16d07cac06193 896858 debug extra exim4-daemon-heavy-dbg_4.72-6+squeeze1_i386.deb 0675c0295f83cfa42861c4cf08495396 3
Accepted exim4 4.72-6+squeeze2 (source i386 all)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Thu, 12 May 2011 19:05:10 +0200 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev Architecture: source i386 all Version: 4.72-6+squeeze2 Distribution: stable-security Urgency: low Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dbg - debugging symbols for the Exim MTA (v4) packages exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Changes: exim4 (4.72-6+squeeze2) stable-security; urgency=low . * [83_dkimexpand.diff] Pulled from upstream git. Do not use string expansion on DKIM domain or identity. CVE-2011-1407. Checksums-Sha1: 92d129dcea1e33eb16d741898c84a4ea5c7b4e5c 1635 exim4_4.72-6+squeeze2.dsc 8bd142ed4354216b7fbfc629010210aa1b5df4b4 593674 exim4_4.72-6+squeeze2.debian.tar.gz efa1dbdb2b0f2d1b6938ec0ad316cfddb1cfd700 1009036 exim4-base_4.72-6+squeeze2_i386.deb d3a03e9c653e089e542686b461d7cb0bb49f29e9 188534 eximon4_4.72-6+squeeze2_i386.deb efd21ca73255df44a21e51a89a20572f2d08124a 549264 exim4-daemon-light_4.72-6+squeeze2_i386.deb ae62046c521092c8e32e9a2f745a092b343af7aa 598474 exim4-daemon-heavy_4.72-6+squeeze2_i386.deb 6ca144fa9b15b7f1a9079b3028e163a688486ca3 809690 exim4-daemon-light-dbg_4.72-6+squeeze2_i386.deb b439ac94ccd7aa848ddec4a17451c10c1fb3b3e5 896922 exim4-daemon-heavy-dbg_4.72-6+squeeze2_i386.deb 8e7d4fc9e0a1e5fa6b29a848dd4a975fc2985af1 355032 exim4-dbg_4.72-6+squeeze2_i386.deb 9e496c35503831880c7bd1de75654945adc173c8 160734 exim4-dev_4.72-6+squeeze2_i386.deb a142c6882f8d2f83a7a47f277145b353f154b187 464158 exim4-config_4.72-6+squeeze2_all.deb f8332e6311d4dcf69f2ad17aea58a3fc6e381d34 7810 exim4_4.72-6+squeeze2_all.deb Checksums-Sha256: 8c9ae7d4afa02dbdc150d295f83e12b5b00faca928614904db1a582160b7ff6c 1635 exim4_4.72-6+squeeze2.dsc fb1a29f7004583792952132a6e9f95325d4bd8868278f47cb1e17b9c5d26348e 593674 exim4_4.72-6+squeeze2.debian.tar.gz 1e62b89d6897113c9ed7620e35ccab1fd56ba81e542f1eba693a0d7b803a62a2 1009036 exim4-base_4.72-6+squeeze2_i386.deb 245a65c870615e177d7f36e023d05d0b350914e8cd7b6c17d637362651180fc9 188534 eximon4_4.72-6+squeeze2_i386.deb aea66ef3bc493d58cfd4289be7c7dbe72b281c66067070a511d8a48637c0a398 549264 exim4-daemon-light_4.72-6+squeeze2_i386.deb d5210471896eeda38bd9f8f4d286c111fe629d2aeaf5a53b9feea5264c8ff462 598474 exim4-daemon-heavy_4.72-6+squeeze2_i386.deb be6daebe7a7cc94ef4c7a9f084c333cf4044d3f3f2667ae6176bfc1e5cbd7d09 809690 exim4-daemon-light-dbg_4.72-6+squeeze2_i386.deb c7f84d5b7b07910d35f77fbe7ba8cfe88c424047e58afb589eee5f5bec06b07a 896922 exim4-daemon-heavy-dbg_4.72-6+squeeze2_i386.deb 473e3c112b9d7a11f9d753c3b3b5f9cac3d6de5540c484bf4a6c831af3361825 355032 exim4-dbg_4.72-6+squeeze2_i386.deb a4d9cb5971d3ef3d87bca6295a3ee3f73da0e83ec846e1421d600dfcb2e8cba5 160734 exim4-dev_4.72-6+squeeze2_i386.deb d8c5a8569445281ef26a43fa71ff8e1548969d5d8b0a5eec945eddd2736c5f5f 464158 exim4-config_4.72-6+squeeze2_all.deb 56d3b6f7b6526f4b6af1d0fd76c367784063a8374f2e9d06a62527f2f7d1edd9 7810 exim4_4.72-6+squeeze2_all.deb Files: 7acb4711405c6f25f6a6e7945fca9a63 1635 mail standard exim4_4.72-6+squeeze2.dsc a30b045a5da284908ce693688787c311 593674 mail standard exim4_4.72-6+squeeze2.debian.tar.gz d229ba453232ff6a88331b51f0f021f2 1009036 mail standard exim4-base_4.72-6+squeeze2_i386.deb 86271c6c24fe8b52642f0d6a8c709922 188534 mail optional eximon4_4.72-6+squeeze2_i386.deb 4c4fd331e553c4547f2df49e248148a6 549264 mail standard exim4-daemon-light_4.72-6+squeeze2_i386.deb e8fe095ad248e51a49d085e06d393b65 598474 mail optional exim4-daemon-heavy_4.72-6+squeeze2_i386.deb 06c36b95841db8f58b1747bf33ae70b0 809690 debug extra exim4-daemon-light-dbg_4.72-6+squeeze2_i386.deb 1be255fb3efcc943f569a90742ec116a 896922 debug extra exim4-daemon-heavy-dbg_4.72-6+squeeze2_i386.deb 80a6c10da16f8e4f07d264384a45a75b 355032 debug extra exim4-dbg_4.72-6+squeeze2_i386.deb 400b461bda41fdf03d1fcc8d1370f99c 160734 mail extra exim4-dev_4.72-6+squeeze2_i386.deb 8b272903fbb24e02934068ea82cb07ee 464158 mail standard exim4-config_4.72-6+squeeze2_all.deb 6c1cbbdbf4ee9f5bc7bdfce46625e34c 7810 mail standard
Accepted gnutls28 3.6.7-4+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 30 Nov 2019 13:41:59 +0100 Source: gnutls28 Architecture: source Version: 3.6.7-4+deb10u1 Distribution: buster Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Closes: 933538 Changes: gnutls28 (3.6.7-4+deb10u1) buster; urgency=medium . * 42_rel3.6.10_01-gnutls_epoch_set_keys-do-not-forbid-random-padding.patch from 3.6.10: Fix interop problems with gnutls 2.x. Closes: #933538 (Thanks, Hanno Stock!) Checksums-Sha1: 144bb2085a7405e03ba68b5e71c7cf520e130d80 3354 gnutls28_3.6.7-4+deb10u1.dsc f875b9b8fe9715d7c5870accfa98ef581d2d97b8 73600 gnutls28_3.6.7-4+deb10u1.debian.tar.xz Checksums-Sha256: 9b095e30940b1011831e557981e0c2992c6e8eec00ea7160af0746e3debb6cbc 3354 gnutls28_3.6.7-4+deb10u1.dsc c3c51ffb43ae3908778464a449a3e2d64bacc3d0a2b9eb6f36bb867f9b08efef 73600 gnutls28_3.6.7-4+deb10u1.debian.tar.xz Files: 7ef52d7865a1438eb3c22577a4fbe5c8 3354 libs optional gnutls28_3.6.7-4+deb10u1.dsc 791b53d09eec41189cc0a39d0fe6f656 73600 libs optional gnutls28_3.6.7-4+deb10u1.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAl3jXZQACgkQpU8BhUOC FITn4w/7BlH+l3dqjRFA433k5k9farQFWrw7styWYeTNsBSykWz/1y4IxyMyeryt Tq9qaBOgZeAdykNXdTApPXF3pe3lIQMCMd7I/9s28UMwT5Ab1Mn6s2AVQ35yfaaz SkzRr4yhPMyNxwB/Wr1J9eEpmz80ljt8okB3V3eKYj1FtTfLnsMTElQjvHogIhi4 B5DWYvoJTxBsbvMytkY6tUs0MwDNKhmC9MkQU1W+vP/sI+EOSsCeVUSGftQD0LPh V3oMLFFTM1srclaj/4FkRdVjDMVLdlv4PXmq8oGhh60g8aIa1avSzXPKFzpexKIm Ti7T3gJCwrXFTGdhsjCCOD9hOVHkAAv5CtY5jjlthVmdwZm54S0gSw4SowtyWeem zcj/ckSFlbpD8lz21H0H8XicTV/F2BOpplusFb7HLO0Ir3V8tuwK+7KiKSGv/kbj 8yJBbN9lqgb9UkhNntQbvZeiovY80xhPlUI7CPIT8qGilm/SokE0d51T2gMpb1rW nHrc2QTKsBlVyYuOycZDbKcpAzw7/XnVNvX+YZY2sDXq3xVB0UYFv/MXXQjO4cg6 lEdswa/S9l7XnZMcNLet6Hu+uJ3y755lzPBNQC8WL2iSa3iuLksKe4nDpDiGFppy 7gBcrICWutwKPbaU6viDSi0qDAWNiKmIm2E0XNKNhAY40YxQQZk= =GfPO -END PGP SIGNATURE-
Accepted libgcrypt20 1.6.3-2+deb8u4 (all source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 01 Jul 2017 11:53:07 +0200 Source: libgcrypt20 Binary: libgcrypt20-doc libgcrypt20-dev libgcrypt20-dbg libgcrypt20 libgcrypt20-udeb libgcrypt11-dev Architecture: all source Version: 1.6.3-2+deb8u4 Distribution: jessie-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: libgcrypt11-dev - transitional libgcrypt11-dev package libgcrypt20-dbg - LGPL Crypto library - debugger files libgcrypt20-dev - LGPL Crypto library - development files libgcrypt20-doc - LGPL Crypto library - documentation libgcrypt20 - LGPL Crypto library - runtime library libgcrypt20-udeb - LGPL Crypto library - runtime library (udeb) Changes: libgcrypt20 (1.6.3-2+deb8u4) jessie-security; urgency=high . * 22_CVE-2017-752*.patch from upstream 1.7.8 release: Mitigate a flush+reload side-channel attack on RSA secret keys dubbed "Sliding right into disaster". For details see <https://eprint.iacr.org/2017/627>. [CVE-2017-7526] Checksums-Sha1: d2ec367313f71a63bb25fc70a8e59314 2587 libgcrypt20_1.6.3-2+deb8u4.dsc a0a7eff13a3ef220f9a58bcacaa0b744b1883657 35372 libgcrypt20_1.6.3-2+deb8u4.debian.tar.xz e18411e897a5452e90d6c380df2fd2ebb79aee0e 65306 libgcrypt11-dev_1.5.4-3+really1.6.3-2+deb8u4_all.deb 1105b2a66bc630df4d8259069e2687a22caa99d4 679856 libgcrypt20-doc_1.6.3-2+deb8u4_all.deb Checksums-Sha256: 5e7816a66d609cd07c15c3e2e55c4c09b11592260a463f36d9bd4f5bc90ce02f 2587 libgcrypt20_1.6.3-2+deb8u4.dsc 36d11626006bcc4376659575780c2a28ff3a2fdca70b01944d4179716c9838f6 35372 libgcrypt20_1.6.3-2+deb8u4.debian.tar.xz f9bbf02640e32eb0805a4210f61256f9e2cdca0eac6877520d2abfcedea722ec 65306 libgcrypt11-dev_1.5.4-3+really1.6.3-2+deb8u4_all.deb 542ba4651150bc153439076ddb76c2f15189dac6e4cc8a4b991e781ced0ca201 679856 libgcrypt20-doc_1.6.3-2+deb8u4_all.deb Files: 2e8a227cab70f473d61e722ac190940d 2587 libs optional libgcrypt20_1.6.3-2+deb8u4.dsc f1124f4b4be7a1cf460e5d3afed9933d 35372 libs optional libgcrypt20_1.6.3-2+deb8u4.debian.tar.xz 6a28879dd5d852b64d54f1c738fbc1d6 65306 oldlibs extra libgcrypt11-dev_1.5.4-3+really1.6.3-2+deb8u4_all.deb eca4c5d23c4944f56e3297d543651f19 679856 doc optional libgcrypt20-doc_1.6.3-2+deb8u4_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAllXfQQACgkQpU8BhUOC FISJvQ/8DtOPmcYpT5YYm1vHKoYL3DCCkpFz4Uc/OUd5JhR4YCLXunBlrp7OUtxS DpFk4JFgxo+hu9BMF4BsAJizObBgTlabX5NheSyvxpPGFXzkPMOhERil0ghOBHdD Gixan/HHnCGhDx7UIIXzkqh/SE2FuYtcEUo4t79hKqZPdl/4LDbsWJZpJA9BRK3r aRcq5ie7ki0Oc+4S/27zt/Zk6zFDMXwiwjiFgG0aL5AjMJkxwubsm8BXQn76yI4W JyLljktYEwX2iVYM5vWRGXdfn6SIIACBnpcXiCImSaAjhAQZlBj1GTgSRPxrJoZy ZRQeWG2jbg4JeV+qGPO2D3B5wxBzH3sGR9sls9nKSMBSU9Q5ITxAvZuw8DWAxZXA Tko7jIbeRmhIKg/YJR8a+MbqL9av0a+uLosIINFhSE1t0SPcq6XsDmMAloiMKFOI bm4VLU63uLw2HxE3GnyNCKX1SoDCYfEkGq7uoqccJ4GHSg5qSX6plPvTVi3v/Klk Q7p70Hir0qmDvS44y1wTcKq1XWBl7LEvTBWVr9XtYaoAdUCDPxicO0zamYRTYx36 CG1+aJmEvF4uY+6XN5o4c2yRcncMdFw3LPhaSDKEH4imSXSJaTJJLlUfVr53qz2K fJXVtdgCvAUN89wxClCA3Y46+MX7dM3JGVYKrGr6hVQ/yf8KCig= =o/yo -END PGP SIGNATURE-
Accepted libgcrypt20 1.7.6-2+deb9u1 (all source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 01 Jul 2017 11:01:58 +0200 Source: libgcrypt20 Binary: libgcrypt20-doc libgcrypt20-dev libgcrypt20 libgcrypt20-udeb libgcrypt11-dev libgcrypt-mingw-w64-dev Architecture: all source Version: 1.7.6-2+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: libgcrypt11-dev - transitional libgcrypt11-dev package libgcrypt20-dev - LGPL Crypto library - development files libgcrypt20-doc - LGPL Crypto library - documentation libgcrypt20 - LGPL Crypto library - runtime library libgcrypt20-udeb - LGPL Crypto library - runtime library (udeb) libgcrypt-mingw-w64-dev - LGPL Crypto library - Windows development Changes: libgcrypt20 (1.7.6-2+deb9u1) stretch-security; urgency=high . * 31_CVE-2017-752*.patch from upstream 1.7.8 release: Mitigate a flush+reload side-channel attack on RSA secret keys dubbed "Sliding right into disaster". For details see <https://eprint.iacr.org/2017/627>. [CVE-2017-7526] Checksums-Sha1: 0254545c274f7a72f4812e08985a1067d229643f 2942 libgcrypt20_1.7.6-2+deb9u1.dsc d2b9e0f413064cfc67188f80d3cbda887c755a62 2897695 libgcrypt20_1.7.6.orig.tar.bz2 fe3a20f0168d841e8f144ff22272b378e0460526 310 libgcrypt20_1.7.6.orig.tar.bz2.asc b9a5075b6aa04097d0ab8fa85f1a4ac73715ec7b 30308 libgcrypt20_1.7.6-2+deb9u1.debian.tar.xz 2c9723a2fd3143878a232db25e3251b8e7c28c2f 2316448 libgcrypt-mingw-w64-dev_1.7.6-2+deb9u1_all.deb abb72e7762708f2dad9a070483df47f367381bc8 874286 libgcrypt20-doc_1.7.6-2+deb9u1_all.deb Checksums-Sha256: b83c76db58ec1e27257df872e342d2045a476819549252e0ffeb03ed2cbe570c 2942 libgcrypt20_1.7.6-2+deb9u1.dsc 626aafee84af9d2ce253d2c143dc1c0902dda045780cc241f39970fc60be05bc 2897695 libgcrypt20_1.7.6.orig.tar.bz2 91ad5a0efafb0edc63c083f733ce476b2a0da663aea5118126aa63825d314e00 310 libgcrypt20_1.7.6.orig.tar.bz2.asc df274675ca3dce4dcbf9ec58e75fdf279a492f4fc91aa2f2d52d368ee9c0ed82 30308 libgcrypt20_1.7.6-2+deb9u1.debian.tar.xz fb742622b7191866ceb8067731476a51c893ddd62d8e8b7a3aa17a5fc5bb 2316448 libgcrypt-mingw-w64-dev_1.7.6-2+deb9u1_all.deb 057d7b0f7c84cba2e2811fe492e830a75ebc67f5cfebf4163e131c26c34ee1f3 874286 libgcrypt20-doc_1.7.6-2+deb9u1_all.deb Files: abdf721ada2ac41537f5d0825a4f6035 2942 libs optional libgcrypt20_1.7.6-2+deb9u1.dsc 54e180679a7ae4d090f8689ca32b654c 2897695 libs optional libgcrypt20_1.7.6.orig.tar.bz2 ebb27eec1079d3417bb08e571563d556 310 libs optional libgcrypt20_1.7.6.orig.tar.bz2.asc 53c2418a6253d2922cc901b6ddb0ec95 30308 libs optional libgcrypt20_1.7.6-2+deb9u1.debian.tar.xz f0be034bba560681833888ae25339438 2316448 libdevel extra libgcrypt-mingw-w64-dev_1.7.6-2+deb9u1_all.deb dd9f1590839b72b9ab28f707bd727991 874286 doc optional libgcrypt20-doc_1.7.6-2+deb9u1_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAllXaZoACgkQpU8BhUOC FISJ3g/+NYDaUhoJEE0D4WOrmbxhvf5s4JFbQCXOKF4qezVB7MIxD1VhNbaZQbb5 se5QzGjxVntGGXNpJGkVmdqqLvoD+ekKrscd4ZQcRqQSvIhCKuqTKHwdi6+7+rqS TboVu6x6E6Nos8lwdILmB9kYkpaOtYcdwkT/JaxYJyL7ETddF+8YUNkDsf17m7i/ WhTVP8CsxB7tGtCbmzaJNmu/EC0mpDY36FSDIwsttEfciJxnFh8SRgzrDFvd57w6 iGkifPqqyyGOPlaL1hqub1VSzMZHyOxPNSnBkTlteaDOl07vvbXg797mZn1AgSwd l1wbm62PyiI1p4KwyT9NjAIGvhCUrIEiFZuaEQrs/fNr4Sz3HjvVpLs6R6QYpMaT xMGq/nzO8/5eJiyyRxBG08EpDSlFTYYAy6vi491cM6maYaPWFzvfaV/BScL4GnAe MrMkXvm2jARBLsq9XrgDks5bKsreXVYjQ4vptEk36ihfvRw7tFRnGjWeyQ45z6Lr Cjp4ZkY5IxMgZN7Sg1aYaB+LeSJWu3/oRNKHDtXyKD/fuqswwD+bt1WO3Rrqa7hr nOYd0PTaPVpZkMBSpnzFOB6iKlyFBcaxHuO9S/KfN3Qlu+oSPFkz6qOMuLIT4Nye 22iArBhdUoEjDnHOExLLYwz7spUIsQWzl39XvDKqbYG2OzItJSs= =4E24 -END PGP SIGNATURE-
Accepted gnutls28 3.5.8-5+deb9u2 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 08 Jul 2017 10:29:05 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls30 gnutls-bin gnutls-doc libgnutlsxx28 libgnutls-openssl27 libgnutls-dane0 Architecture: source Version: 3.5.8-5+deb9u2 Distribution: stretch Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Closes: 867581 Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples libgnutls28-dev - GNU TLS library - development files libgnutls30 - GNU TLS library - main runtime library libgnutls-dane0 - GNU TLS library - DANE security support libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.5.8-5+deb9u2) stretch; urgency=medium . * 37_aarch64-fix-AES-GCM-in-place-encryption-and-decrypti.patch from upstream 3.5.x branch: Fix breakage if AES-GCM in-place encryption and decryption on aarch64. Closes: #867581 Checksums-Sha1: 2343f2e7cd47addd7c417f9db05da76d5b6eb21b 3286 gnutls28_3.5.8-5+deb9u2.dsc 475d6687abd2054d69852b322d1201d99cab66f6 107164 gnutls28_3.5.8-5+deb9u2.debian.tar.xz Checksums-Sha256: 7e9f5175859130a1bb2768b8ed46fd5f8f3f36145b5e7bf8c422cc91aa6920db 3286 gnutls28_3.5.8-5+deb9u2.dsc afcc9cf4f33f0e84751d770631a4915c70309fc9c5e04344d06a86c66b58b0c8 107164 gnutls28_3.5.8-5+deb9u2.debian.tar.xz Files: d84335417a246d2741c647bd14931341 3286 libs optional gnutls28_3.5.8-5+deb9u2.dsc 2187c3bbc7d2ebdd82870c0d713fb252 107164 libs optional gnutls28_3.5.8-5+deb9u2.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAllgnVYACgkQpU8BhUOC FIRSJxAAnYHklmutJ5VM3AmB6niEqvU8QQ+t/vOaZl1FY+4LgnOXn3nIQ/mLVcNB Zkrd1cS3/SBc4DjAbDkUO+z0yLioE/QZSlAYBVLVs8gbjdzR99HWyg257XLv3+QF j/dVTfAkl8xVcrOXJpHbNJCzCT7NieGXiFZyDK0llX1wyFcNAlfjYRNcEGK6CgAF ZNaLXQor4XXZ7CDR+It1noe+YuDLbq7t0iGinusM/ugKWNBklK184REx9qBke5mE gl7V5qM8nmcA/UvDwU0D5t13sdi96pmoqlOvnc0QMe9POjp9wjeQ02Nuy0MthE85 AjLI1lmrE+5yKSfpS3XtaIExJqBvap/SkkUsNQh+c6743nFZZbYE1UPK6AwzTo04 57/kZ+oIJ4JbwKeEyi1ncagKKYeryxXqKKYuD/NbavS8Ycek7LCCgKFJjnaguxDA TR9hlOPrWoR28R3kyRIpKchm1zaIUAUzDAHfD5IMYqSxZ70k9bqb5Syzee2BsCQu SmIyovq5xwNjP1RvlPPtMNOKHNruJGZiDJDSpnTdWZvfxlBrPEv57pBLFSILsFT9 zWulEDQ5NtTZzj9RlhNlxTvbbRlC6SSQdjCTx0nxPbNDdt01ztZfSjMIE245Kq0+ UiKwOGeUiXo4VpOEaJdUzJzfVECoF2fNjn9ZjVY5SHOGt5iNhak= =Jizf -END PGP SIGNATURE-
Accepted gnutls28 3.5.8-5+deb9u3 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 23 Jul 2017 14:28:37 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls30 gnutls-bin gnutls-doc libgnutlsxx28 libgnutls-openssl27 libgnutls-dane0 Architecture: source Version: 3.5.8-5+deb9u3 Distribution: stretch Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples libgnutls28-dev - GNU TLS library - development files libgnutls30 - GNU TLS library - main runtime library libgnutls-dane0 - GNU TLS library - DANE security support libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.5.8-5+deb9u3) stretch; urgency=medium . * 38_01-OCSP-check-the-subject-public-key-identifier-field-t.patch 38_02-OCSP-find_signercert-improved-DER-length-calculation.patch from gnutls 3.5.14: Fix OCSP verification errors, especially with ecdsa signatures. https://gitlab.com/gnutls/gnutls/issues/223 Thanks to Nikos Mavrogiannopoulos for the suggestion. Checksums-Sha1: 504800ed21b3abacc109f6bede998cb5fe367efc 3286 gnutls28_3.5.8-5+deb9u3.dsc 00eb991ef1b4576cbe3308e095a266d0518a4334 108300 gnutls28_3.5.8-5+deb9u3.debian.tar.xz Checksums-Sha256: 1e5c25f95b60f8320ec34dcaa0cd91fb0738ee51398ed885f56f8265acc21112 3286 gnutls28_3.5.8-5+deb9u3.dsc 73c4ac104115bee72e4acf253eac01306426d3687d7a883acf0265cdd3eac12f 108300 gnutls28_3.5.8-5+deb9u3.debian.tar.xz Files: 768fbfa71def3535de4d2363ef4b4ea0 3286 libs optional gnutls28_3.5.8-5+deb9u3.dsc ab8c4fb573e21f3df7ee320fdbc81b3c 108300 libs optional gnutls28_3.5.8-5+deb9u3.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAll0pNUACgkQpU8BhUOC FIS7YRAAj3s9GalUtJqF8sdYCwxULaUcm0/VrPu03aIl+STS0mMyaWQfqQemVQOk wr7YvGsPB0N6yTMq1/NaNRT/n9aUT7q8fozbZ+gxZpfRCBXE+4wgIT/2jgjFO1zg UJgdurK9oELF8fUZYKSA5OOc1a/Dd/zz5V7Srpgv2wYMIJnYNTfjIC5D6VjKZKS0 OOxOznnRRWO0ePkfg6Hi64p6D3HGUWf3hJHnQVQLO5ykfyp8QEKXFsN2B44eZpXs +0d4qT1aHQjdUS8UQ2GYVtehAc8nORukKOFKw6qJrhsoiMxKMcE1jgPXiTvMA9SI h8NJPC0o+Bqingx1uRVZ7qbCm3DpRxkJuWgJhvuzSCwCzCIkBD9vvESaEialF3/b LXkVg+QRAXZF9HAeyyARqjHvB9qEAAmGEoXwS1gtDvKhh5stf+zAWQXtctQYn0xE UKVDqegkT4kOjZcQ++ITMeA/xxIWB+vTtqRRMKHSLj+67U59lVG6FiR8KMHmNlWT AVrQOApcyt7X20M7Prgw8u1AH0txOZJ6US88s7z0x0wlHCFcmDEy68KO6pJOQhYX JMBi5vMgWsJKOQd9YefPQF/+lhZW3Pl7ZyrhbkZp75UyJAl7BtWTCS+PIvPl5kaL Vb8O63sMprPRy9z4Z0+bh1R3KlkNV60nWPmKWWrtfFtGz+sgXTc= =EQm1 -END PGP SIGNATURE-
Accepted gnutls28 3.5.8-5+deb9u4 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 06 Oct 2018 14:06:18 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls30 gnutls-bin gnutls-doc libgnutlsxx28 libgnutls-openssl27 libgnutls-dane0 Architecture: source Version: 3.5.8-5+deb9u4 Distribution: stretch Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples libgnutls28-dev - GNU TLS library - development files libgnutls30 - GNU TLS library - main runtime library libgnutls-dane0 - GNU TLS library - DANE security support libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.5.8-5+deb9u4) stretch; urgency=medium . * Pull fixes for CVE-2018-10844 and CVE-2018-10845 from gnutls 3.5.19 + 39_01-dummy_wait-correctly-account-the-length-field-in-SHA.patch + 39_02-dummy_wait-always-hash-the-same-amount-of-blocks-tha.patch + 39_03-cbc_mac_verify-require-minimum-padding-under-SSL3.0.patch + 39_04-hmac-sha384-and-sha256-ciphersuites-were-removed-fro.patch + 39_05-tests-pkcs12_encode-fix-test-for-SHA512.patch Checksums-Sha1: c4b76205d5334be929dc9063182b7b8f75a003bc 3286 gnutls28_3.5.8-5+deb9u4.dsc 1137bc261456bdf7f2ec84930a129017bb6b3fe4 111484 gnutls28_3.5.8-5+deb9u4.debian.tar.xz Checksums-Sha256: 688284aba04d8ff84c6636d354c844c06e691031eb9a2fccc2e41547ed2fac9e 3286 gnutls28_3.5.8-5+deb9u4.dsc 9013debe7c67edcd8aff039ab250d294b61313e52f7bbbd212d68d0b4fcee187 111484 gnutls28_3.5.8-5+deb9u4.debian.tar.xz Files: b1163afe47bfa5923d0d73859300350c 3286 libs optional gnutls28_3.5.8-5+deb9u4.dsc 83b53f9068afcfa474127aae5baec636 111484 libs optional gnutls28_3.5.8-5+deb9u4.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAlu4ri4ACgkQpU8BhUOC FITm+Q/8DM1vGisYR9QMzIzMFav+VH82wPNUXvWjUrZkfZkiOjF/8nFAjEIsGBWX AJSDUZwKr99CWvPf4oBCcCuDBPHVEYElRCK3mkAZenVR3olUGqk1Ag8FYDXwth7n r1qHTAsysGu82rH51hf9AKJ2a6jddaIMEx2HD2AT/qaE4jCBJMY8IsdmRK9Y8IFD Ip0cVKaij3oANCdTQmfr0MYzu3mPAe5kmRWwoUQuGJYfFIREbBgM6KnDmd2Q/7cJ 0+ZNetascjXGd2KtyqQET87no0dY7qwmvOfPYw6uc/Wze47HslSJx3p02ep862XR 4jDpAqGaxk9b2MyR09m6PP2TnROHcgX6pwcDWeSbuXd2TJvOiPIvyoKG6OwFLdGG ikOS0dqrbsQkg5oFkop4f9E6M4iAmCLXqYx+uwNk+Fx46Mkn5tjnGF4pNvsRI+ou a8WSTFiZRK8i7DyIAqnf7AtmE5pvg5KvKbjG0e2eH1p+vugkWFnvONQ2KgEk0T9p iyoY9PEnlrOti/wE7f4ssc6tnKd0TOmL6nGnPTbO5xxZnQiilpo3bM3vTib1ewBM RnhUxkoYIHy8+2edD8FUY5XOnidhbeIp/OQxgOMkfY5FhjzFHpHNWtaDTB+3lcO0 jrWFn92QYL7klw0LuK4hid2+1wXc8G/Eo2KLkzbwKThJrU276WA= =Dc0v -END PGP SIGNATURE-
Accepted exim4 4.92-8+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sat, 20 Jul 2019 13:35:58 +0200
Source: exim4
Architecture: source
Version: 4.92-8+deb10u1
Distribution: buster-security
Urgency: high
Maintainer: Exim4 Maintainers
Changed-By: Andreas Metzler
Changes:
exim4 (4.92-8+deb10u1) buster-security; urgency=high
.
* Fix remote command execution vulnerability related to
"${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006
Checksums-Sha1:
30be6e81a55dbc78f00f376d82c40663c6da0371 2855 exim4_4.92-8+deb10u1.dsc
22f9138186ea3233c20a7dffaf3d506c4017ce07 1767136 exim4_4.92.orig.tar.xz
2a697649dcf2b2a11e08eee7898526bcad35992b 488 exim4_4.92.orig.tar.xz.asc
3cc72de4a3253df099c3aa0484a2a90ac65af83b 472736
exim4_4.92-8+deb10u1.debian.tar.xz
Checksums-Sha256:
f9de60e94d91a7785d9dbacb33af1de7b4ebd18d3357aeee3fae3ebfa39aaf14 2855
exim4_4.92-8+deb10u1.dsc
6ac9e62b484e78951c7c0517d1229ad7619a7eea70ca3b38b8ef430b28ef1d62 1767136
exim4_4.92.orig.tar.xz
2d0cbdce4ca1d5f8850a5335e2f7dc25c229c260b533220f1e647c746f8ad1d9 488
exim4_4.92.orig.tar.xz.asc
20f9a51c7ccb6fcdb86d1daf39368a27b8e14330da662aee7299c29c33fd44f8 472736
exim4_4.92-8+deb10u1.debian.tar.xz
Files:
ed4f6bc281cd895aed1760b50168af28 2855 mail standard exim4_4.92-8+deb10u1.dsc
675baa21ba74f5396c8c3c14c5dcfd25 1767136 mail standard exim4_4.92.orig.tar.xz
ba579a2d7ea29437574db4de2bd7e4ad 488 mail standard exim4_4.92.orig.tar.xz.asc
d40c24218bbabb6d0dd8bbee78444c4b 472736 mail standard
exim4_4.92-8+deb10u1.debian.tar.xz
-BEGIN PGP SIGNATURE-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=DThv
-END PGP SIGNATURE-
Accepted exim4 4.89-2+deb9u5 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sat, 20 Jul 2019 13:32:35 +0200
Source: exim4
Architecture: source
Version: 4.89-2+deb9u5
Distribution: stretch-security
Urgency: high
Maintainer: Exim4 Maintainers
Changed-By: Andreas Metzler
Changes:
exim4 (4.89-2+deb9u5) stretch-security; urgency=high
.
* Fix remote command execution vulnerability related to
"${sort}"-expansion. CVE-2019-13917 OVE-20190718-0006
Checksums-Sha1:
c93104826b3b55137867c3800c028b0bd3353c0c 2818 exim4_4.89-2+deb9u5.dsc
96cf18b2579d9ec60b9902168c5ebebda8bded7d 453336
exim4_4.89-2+deb9u5.debian.tar.xz
Checksums-Sha256:
2a2e9ddd0859a3f630b18311e551c32caa9c750538b8cce184891feb6b88969d 2818
exim4_4.89-2+deb9u5.dsc
deb9fa5134c48ae7adc71ca5a30ea1b419cc254170ec5a56b9d36977ddb98652 453336
exim4_4.89-2+deb9u5.debian.tar.xz
Files:
dae0cb4f04f09ffbf11852106f32805a 2818 mail standard exim4_4.89-2+deb9u5.dsc
f5dbc8370b09cb4dc58c84e99c4d731d 453336 mail standard
exim4_4.89-2+deb9u5.debian.tar.xz
-BEGIN PGP SIGNATURE-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=j/hf
-END PGP SIGNATURE-
Accepted exim4 4.92-8+deb10u2 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 03 Sep 2019 19:51:11 +0200 Source: exim4 Architecture: source Version: 4.92-8+deb10u2 Distribution: buster-security Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Changes: exim4 (4.92-8+deb10u2) buster-security; urgency=high . * 78_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI related buffer overflow. CVE-2019-15846 Checksums-Sha1: 2ce51f6fd73cb6f15315cbb4d469c1e8c51bcc51 2855 exim4_4.92-8+deb10u2.dsc de1253caf4d2a486d882220740543a1d9b38ef59 473180 exim4_4.92-8+deb10u2.debian.tar.xz Checksums-Sha256: 8d87792526d1e28f68560b3905625c2d8ec5ca0e89b63c4699e2bd438a90bbe4 2855 exim4_4.92-8+deb10u2.dsc ecfc07e9bffbf57b93b60e6da57378ff5714eacecc2128ed27fa50ef5156bad9 473180 exim4_4.92-8+deb10u2.debian.tar.xz Files: 3dfca041208743e571b93fad1ec22fb1 2855 mail standard exim4_4.92-8+deb10u2.dsc fd79b2694623cee1e296016ff8453ff6 473180 mail standard exim4_4.92-8+deb10u2.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAl1v88MACgkQpU8BhUOC FIQCgQ/+LVS+6tn5GP3jbIwZYSm4CYA3NNcatchaZJzPd9rjBbFOZchw9HxHyl7b K/cZPjrIxHhmJbAmNMw6RDUY3QqKV67qKhiQf3hVcA3Pydd/WiU6UTDiN/6CS0uY tULpM5gjzQ3A1Xr1J2gk9bMt7scjQUBE8uB3u1glz8HZGGAM6WrxqCNLmBaXFUvI v+DWaFr6t0+Hh+bu5TdibinOUbVuaMCZVU9siyC2rNQaZIMcrfIaNn9VcP46VasQ FrmJf92+4hcdVy81I/iJB6yTdP2NeqX8kLozVQCEHodBK1V4kMxDkyPEDc+gjdFW 5B0hXvYsguFt+x25wb/m76IvU/Hb1tPwRTyKcoHP58nK/Z2Vo7QNgMDcTUGPPe0W yCx1sJgWFeg4CYZsBxaTdR8g+a6bkLaxeT3lnCKDN9j3jBFyXtc/kIYpUSHtOFsN WePGk3qEDePl44sBXj8h4z4+QMTZ9wjjZzrvfA4TiCJFt2DF0rqN4Mie7ip19TXC vSCO/keIn6xIkSGAYRmB8GgEonYrwYaxUI/sTlL3NbqPTa6pjtERkljXKJ2C6Ut5 cJ35TYm7yk3naNrZxGN/qKJKOEObmpo9CpeDoad7M1Y+pMnjcc9q2IcuKnPPmmeb OHx1jddlJ+Vy39avKeSkFFXojHOg8GANAwQkMfPC79BTFJKZ8mI= =AqeB -END PGP SIGNATURE-
Accepted exim4 4.89-2+deb9u6 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 03 Sep 2019 20:01:38 +0200 Source: exim4 Architecture: source Version: 4.89-2+deb9u6 Distribution: stretch-security Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Changes: exim4 (4.89-2+deb9u6) stretch-security; urgency=high . * 85_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI related buffer overflow. CVE-2019-15846 Checksums-Sha1: 774540e9586da6a696be88ecbee25e7e05992a05 2819 exim4_4.89-2+deb9u6.dsc 1e0b807927f9b1c9f56d724d582469cfca952d92 453864 exim4_4.89-2+deb9u6.debian.tar.xz Checksums-Sha256: 3c6c87fb6d0e85b16a5b0c1eb999459ce5ec4a0340b766647827fce7199acc54 2819 exim4_4.89-2+deb9u6.dsc 672c9a0722d8edb12221a0e08fd53e4682c73200e57f084ef11fa0a76342a9c8 453864 exim4_4.89-2+deb9u6.debian.tar.xz Files: 4ae56595c5d4b9d2d379733a0013a4fc 2819 mail standard exim4_4.89-2+deb9u6.dsc f3cecc80f480dbd16dc954d94f11a153 453864 mail standard exim4_4.89-2+deb9u6.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAl1xSXcACgkQpU8BhUOC FIT2tw//cWoshAaAdsnNEdcJe2rKyomAHc5FB97LTelBrvzIok7n0yUxtzG2tudk D3NvJE4NRID0AFmG/sOSuPPQPQ+FPb8iaHB58tcB+MCl+ZsV1q6A+wf4k5x+Anpl w+aFutXvOZo8qEQ5g2Lak0sGa+MbXciBOoZIrC54Pzvb00/X3OUzx6k0MCHI1ek1 E0uTS5EJFI1vYFdQ3r7aUn+6U24/SS7IJiOaz+mC4JVPTrgNWJ81puoSe+N2H8gV UH0XpT7jYdtFTQsUx8n8hg0rpHLIeVqiAU99jVyo04JBw7oSB9JeDyWsbqP96NH8 N4nRKKTg2EBihJuoV+b29GHJ+47vPNizCvNH6FbqleBDRdSoABMiSTpe6ryvd4yi 0lO9GPziVQSq0loEfvi4oeAGpRBKVXxDtQvygCV/s2yq7Gc3W3nIm8PCQW8Kcp8X cmgWR+k6mg9GAc++J7TbLQk3BynQgKOwUo3fXxgjD58z1m/VGoNi4zVt8Dt8QI0X 8Uwhhr/IsFsTXmKSTQnLG+WndGTgNgna/jCI5imrBHJR0+Kt2drJOwcPseJycKTo 93a4HJ/tm6oYgEPWVdYGGYT0W0J9o3w86Sy+PSc7h2o0GXAM56pq9Ircm5iW77Wp yB5UsiuEt+QP7BEvlfKtBA2j2otzcilLp0d/zwO9Vf9f/AqqKpw= =TpOJ -END PGP SIGNATURE-
Accepted exim4 4.92-8+deb10u3 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 27 Sep 2019 18:09:35 +0200 Source: exim4 Architecture: source Version: 4.92-8+deb10u3 Distribution: buster-security Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Changes: exim4 (4.92-8+deb10u3) buster-security; urgency=high . * 78_02-Fix-buffer-overflow-in-string_vformat.-Bug-2449.patch: Fix buffer overflow in string_vformat. Checksums-Sha1: 8b5b76e14cf716a277f251d50aae7ae8982f4ff3 2855 exim4_4.92-8+deb10u3.dsc 8eebe6f0074639c15cac18ac3c48eb798ae1b0f5 473560 exim4_4.92-8+deb10u3.debian.tar.xz Checksums-Sha256: 2d6a1062a233b3009adeef1738e02d22864207f9fa0cc09b12d3ae127cc4b94b 2855 exim4_4.92-8+deb10u3.dsc f6afb06373b77b798bf1032d9336ff50a61fbb311dfc6156603c4b6bf03d4899 473560 exim4_4.92-8+deb10u3.debian.tar.xz Files: c5aff2b10e41e8d56a74d061adab5680 2855 mail standard exim4_4.92-8+deb10u3.dsc 8e740aa06a1846ca8a0f2d091902b85f 473560 mail standard exim4_4.92-8+deb10u3.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAl2OOrMACgkQpU8BhUOC FIQWzBAAoiiaP1wdF9eb4uTBql04kyYTh1o/sVcNGUGVmHM/EdqY3OS8PNWoIpRK gES6YL8rT4se7f5lLArEqP8xrmtLjdGYsLXXGsSY0Qgm2qXNIewWTAeob1SJVwrN 4HWGUTwVZ1opzWwo323m9wXuh6SSr5suQe4ji02mN+vrFoeWYz8yw2mB+cnOhCYB vOOumn1kiifbVC91NhK0T8NVa0dChkegy1LjU7TvZDMow+0wlI5zXTE+VJ477uQR H+7h+IYX59xzknWlrNDBJo3SSPkeV1XMZtavyftACw9ygBGbzYSh8f5yhmZyeiRs US1+3Fq4Ai0/yMEm6BVEKyRDQfrAWqBJh9RfNLxa9yJZRQZW3kV8qdQjVyS3u/s0 283fupiIRmCuen66C6DLxdOpAe4/tkpcne4IrHencvgMn8PfRW5EmyibQ+CDqMQh K8U6sanAeCbnDjN67RG+p7Zfe6wy53+e5KUyQ3MuX56UD7k72ocN1uvhM5mmANir mJW6jK0Le1QvOp5Z77QbEjLo22jtB2PwVYZiUBKZ9Bpx36FwkzDuZ34D1rts7zK9 o80GM1rtwmRmHYNqM14y9e4rbMbP3VT5hgrKQ/ALDzCzO2JZ0VNks4T/PmXXkxWN kinUNZh9/EmqKLp9T9EBnatOReN23zfzAV6DS0MvfdndMJhzs5I= =cXNw -END PGP SIGNATURE-
Accepted gnutls26 2.8.6-1+squeeze1 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Thu, 22 Dec 2011 18:07:26 +0100 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls-doc guile-gnutls Architecture: source all i386 Version: 2.8.6-1+squeeze1 Distribution: stable Urgency: low Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - the GNU TLS library - commandline utilities gnutls-doc - the GNU TLS library - documentation and examples guile-gnutls - the GNU TLS library - GNU Guile bindings libgnutls-dev - the GNU TLS library - development files libgnutls26 - the GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols Closes: 648441 Changes: gnutls26 (2.8.6-1+squeeze1) stable; urgency=low . * Pull fixes for buffer overflow in gnutls_session_get_data() from upstream git. (CVE-2011-4128: GNUTLS-SA-2011-2) Closes: #648441 20_CVE-2011-4128.part1.diff 20_CVE-2011-4128.part2.diff Checksums-Sha1: 0eb560484c2e6074f27d76d763d070818c9de81d 1658 gnutls26_2.8.6-1+squeeze1.dsc 1e17366ae0d1d3207bee189c0f28f79425fd0f81 19785 gnutls26_2.8.6-1+squeeze1.debian.tar.gz e7987b37b59e1bac7dc360ca950a2eeb05d2f82f 3062878 gnutls-doc_2.8.6-1+squeeze1_all.deb 50e2eeab1e386708e8c5359e06077f6b1939f4b4 591940 libgnutls-dev_2.8.6-1+squeeze1_i386.deb d293ed4287c2ca5c10c63937000c119dbec4be5a 528304 libgnutls26_2.8.6-1+squeeze1_i386.deb 9e8ab3c3fa1a515931985cb1dc365277e057637b 1101420 libgnutls26-dbg_2.8.6-1+squeeze1_i386.deb cdf6d8aa52e605e99ab8904f51a23a577ad3ec95 317984 gnutls-bin_2.8.6-1+squeeze1_i386.deb 3271f752dbf9506a0ca44d9ebed7d9b95f2740f9 252122 guile-gnutls_2.8.6-1+squeeze1_i386.deb Checksums-Sha256: 9d579990f1e47f3bc00867538402050c8ac8609a05b48dd975789b6470f11fcb 1658 gnutls26_2.8.6-1+squeeze1.dsc e49474bd8a836eadd227369b8939574ce0bf2df5e48ad83098ca7afad53930fc 19785 gnutls26_2.8.6-1+squeeze1.debian.tar.gz 962cdf05600e21b0eed63dbf20f7e79ac752731dceb5563eb7994f015515ca30 3062878 gnutls-doc_2.8.6-1+squeeze1_all.deb a2f0d4fb8f19a5f4799abcace2d2817b2a64aa69e4c1b29a96e39cc38b51fb2f 591940 libgnutls-dev_2.8.6-1+squeeze1_i386.deb a3cb3ba386c0c062eec52a64b7156f1f23a66ae8dd060fda6a24d137fe6c59d3 528304 libgnutls26_2.8.6-1+squeeze1_i386.deb 2641f55857cc8f48b23deab94e48fec8a7d5c9aa57c11fcf3740ec1381f24507 1101420 libgnutls26-dbg_2.8.6-1+squeeze1_i386.deb c24328c8cdb0bc97cccdd17979bb3e67861a7e76eb0890c0cb83aba9368f2619 317984 gnutls-bin_2.8.6-1+squeeze1_i386.deb a4615dd888a21c3ea2ba361bf16f60a800029c6c0200ed4d7deb897a01c765f0 252122 guile-gnutls_2.8.6-1+squeeze1_i386.deb Files: fc1f2efc7a559b8812cc69804ff78e5c 1658 libs optional gnutls26_2.8.6-1+squeeze1.dsc b3e6d35dec3fa02bbb2c81acbd233304 19785 libs optional gnutls26_2.8.6-1+squeeze1.debian.tar.gz fe83917babf9e2a6a0e32b3e45480e63 3062878 doc optional gnutls-doc_2.8.6-1+squeeze1_all.deb 3b7aaf179cb578bfe30abfaddb2277af 591940 libdevel optional libgnutls-dev_2.8.6-1+squeeze1_i386.deb 985807d49cbcd7557acb0fb1d897a1af 528304 libs standard libgnutls26_2.8.6-1+squeeze1_i386.deb c31dced61bd8ecf10f81ae62ba931635 1101420 debug extra libgnutls26-dbg_2.8.6-1+squeeze1_i386.deb 2543c6b3e0beb8ac1040a0d4e55e2bcf 317984 net optional gnutls-bin_2.8.6-1+squeeze1_i386.deb c8790d82cef527e678e18d21749bcb84 252122 lisp optional guile-gnutls_2.8.6-1+squeeze1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEAREDAAYFAk70IhcACgkQHTOcZYuNdmOVmgCgoVgPiZlTwA7aYnFf/cbqvM4u wP8An0mx+8/bi/d5QI31yntsMg/0yp2c =meFe -END PGP SIGNATURE- Accepted: gnutls-bin_2.8.6-1+squeeze1_i386.deb to main/g/gnutls26/gnutls-bin_2.8.6-1+squeeze1_i386.deb gnutls-doc_2.8.6-1+squeeze1_all.deb to main/g/gnutls26/gnutls-doc_2.8.6-1+squeeze1_all.deb gnutls26_2.8.6-1+squeeze1.debian.tar.gz to main/g/gnutls26/gnutls26_2.8.6-1+squeeze1.debian.tar.gz gnutls26_2.8.6-1+squeeze1.dsc to main/g/gnutls26/gnutls26_2.8.6-1+squeeze1.dsc guile-gnutls_2.8.6-1+squeeze1_i386.deb to main/g/gnutls26/guile-gnutls_2.8.6-1+squeeze1_i386.deb libgnutls-dev_2.8.6-1+squeeze1_i386.deb to main/g/gnutls26/libgnutls-dev_2.8.6-1+squeeze1_i386.deb libgnutls26-dbg_2.8.6-1+squeeze1_i386.deb to main/g/gnutls26/libgnutls26-dbg_2.8.6-1+squeeze1_i386.deb libgnutls26_2.8.6-1+squeeze1_i386.deb to main/g/gnutls26/libgnutls26_2.8.6-1+squeeze1_i386.deb -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1rexha-0004uq...@franck.debian.org
Accepted libtasn1-3 2.7-1+squeeze+1 (source i386)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Wed, 21 Mar 2012 16:01:21 +0100 Source: libtasn1-3 Binary: libtasn1-3-dev libtasn1-3-dbg libtasn1-3 libtasn1-3-bin Architecture: source i386 Version: 2.7-1+squeeze+1 Distribution: stable-security Urgency: low Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: libtasn1-3 - Manage ASN.1 structures (runtime) libtasn1-3-bin - Manage ASN.1 structures (binaries) libtasn1-3-dbg - Manage ASN.1 structures (development) libtasn1-3-dev - Manage ASN.1 structures (development) Changes: libtasn1-3 (2.7-1+squeeze+1) stable-security; urgency=low . * ASN.1 length decoding vulnerability. CVE-2012-1569. Checksums-Sha1: 8386929048109f968a1a670ad931a6783aff5a5f 1544 libtasn1-3_2.7-1+squeeze+1.dsc ab01751b9eafa5be1b80f9309bd6365eb3a3f969 1866868 libtasn1-3_2.7.orig.tar.gz 1060add09421fc0d45f108674b9bdde5f98e0675 9768 libtasn1-3_2.7-1+squeeze+1.debian.tar.gz 706f32d847def8f63fa80df8bd33bbc40a497ca3 381308 libtasn1-3-dev_2.7-1+squeeze+1_i386.deb fb00ec18948e0a57ff87a43aca5b2f9914e31a07 85678 libtasn1-3-dbg_2.7-1+squeeze+1_i386.deb 00d3dc9c5896faaf32703407bfbe28ea2b0af3d5 61568 libtasn1-3_2.7-1+squeeze+1_i386.deb a61aa494f472097b98740c701b7ca7c49e78d825 43096 libtasn1-3-bin_2.7-1+squeeze+1_i386.deb Checksums-Sha256: cf62ae9b235074543963f4d9565777ff3f7dd2e3939e4d0202245e91a669c277 1544 libtasn1-3_2.7-1+squeeze+1.dsc 10ff7f1ebe45ee53121e32f8271b79d13532ef76d483316b960a623608781e66 1866868 libtasn1-3_2.7.orig.tar.gz f1c45b2b9067dc41938350cdfd5153c8c8addb6136553f1bd5881df026bce227 9768 libtasn1-3_2.7-1+squeeze+1.debian.tar.gz 186e2a0c646e80b785597ab55c83bcb1e415168fd6ed0610f3d9ec99c4ad 381308 libtasn1-3-dev_2.7-1+squeeze+1_i386.deb 93da1648efa56643d8908bdf932dfb70ec1295ad586ad71dc1ada9817d850427 85678 libtasn1-3-dbg_2.7-1+squeeze+1_i386.deb c7cb635b507ebf2de2adb8161b0f0fbafd9191798543a0ee689547ba3bd0e9a6 61568 libtasn1-3_2.7-1+squeeze+1_i386.deb dc2d7ff89fb9ccee7c9fcf9c7bd4f6ac2a8a2828e613b252da027b51f6006445 43096 libtasn1-3-bin_2.7-1+squeeze+1_i386.deb Files: 7adea95fbd397f12a8e7c532f5459925 1544 libs important libtasn1-3_2.7-1+squeeze+1.dsc fade9f961ec7084dd91a9ba409ba7ab1 1866868 libs important libtasn1-3_2.7.orig.tar.gz e1c5f600b5f12133322f3db7371b6a1c 9768 libs important libtasn1-3_2.7-1+squeeze+1.debian.tar.gz da4a890ffdf4e6dca89d77a077950ece 381308 libdevel optional libtasn1-3-dev_2.7-1+squeeze+1_i386.deb 708b6a0b53fc750cb17f8cb87969bf0d 85678 debug extra libtasn1-3-dbg_2.7-1+squeeze+1_i386.deb a1e0e2261ca2927a81ae206356ee283a 61568 libs important libtasn1-3_2.7-1+squeeze+1_i386.deb d8f26e9972a75fd64b89f148e08d01f2 43096 devel extra libtasn1-3-bin_2.7-1+squeeze+1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEAREDAAYFAk9p9gcACgkQHTOcZYuNdmOa/QCgqVzAIfov1a3KRQCqtrndGD0M wmcAn28rsRA1FExSuXJVN1mwWxh6Z4WF =Zbfl -END PGP SIGNATURE- Accepted: libtasn1-3-bin_2.7-1+squeeze+1_i386.deb to main/libt/libtasn1-3/libtasn1-3-bin_2.7-1+squeeze+1_i386.deb libtasn1-3-dbg_2.7-1+squeeze+1_i386.deb to main/libt/libtasn1-3/libtasn1-3-dbg_2.7-1+squeeze+1_i386.deb libtasn1-3-dev_2.7-1+squeeze+1_i386.deb to main/libt/libtasn1-3/libtasn1-3-dev_2.7-1+squeeze+1_i386.deb libtasn1-3_2.7-1+squeeze+1.debian.tar.gz to main/libt/libtasn1-3/libtasn1-3_2.7-1+squeeze+1.debian.tar.gz libtasn1-3_2.7-1+squeeze+1.dsc to main/libt/libtasn1-3/libtasn1-3_2.7-1+squeeze+1.dsc libtasn1-3_2.7-1+squeeze+1_i386.deb to main/libt/libtasn1-3/libtasn1-3_2.7-1+squeeze+1_i386.deb -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1sipio-0006st...@franck.debian.org
Accepted gnutls26 2.12.20-7 (source all amd64)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Fri, 24 May 2013 19:54:10 +0200 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls26-doc guile-gnutls libgnutlsxx27 libgnutls-openssl27 Architecture: source all amd64 Version: 2.12.20-7 Distribution: wheezy-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls26-doc - GNU TLS library 2.x - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-dev - GNU TLS library - development files libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls26 - GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols libgnutlsxx27 - GNU TLS library - C++ runtime library Closes: 709301 Changes: gnutls26 (2.12.20-7) wheezy-security; urgency=high . * [36_sanitycheck.diff] from upstream GIT. - Fix out of bounds data access. Closes: #709301 Checksums-Sha1: 1e40821570917ddc9fde1d4725ee02dc3b797f27 2038 gnutls26_2.12.20-7.dsc a8a7bb1f51b4da45d32242bd2e843ab3a66f63f6 7231438 gnutls26_2.12.20.orig.tar.bz2 570a7a697ccc0edefbbca52f6f9be6298337eb5f 30571 gnutls26_2.12.20-7.debian.tar.gz 387f414b31151e7d4aade25b108d56ae92fdb245 2623250 gnutls26-doc_2.12.20-7_all.deb 2773a2e11746d251118c6e4463f0ecd5cea64c25 747126 libgnutls-dev_2.12.20-7_amd64.deb 8553fb5fc646844e53c08b4e1aa1e91e5b0c3e61 618584 libgnutls26_2.12.20-7_amd64.deb 49bb6ece06b9b67f73da226ce4f9beb24a55f16c 1958034 libgnutls26-dbg_2.12.20-7_amd64.deb eb0dedea8c157320605987173f736540df82ec64 394318 gnutls-bin_3.0.22-3+really2.12.20-7_amd64.deb f7a62298b0f95f9ea659913f9a97f56f93cfe30b 269200 guile-gnutls_3.0.22-3+really2.12.20-7_amd64.deb 701adcc36b83cb5226bbdb4a96a9eccfae332098 222654 libgnutlsxx27_2.12.20-7_amd64.deb 3eb6fb6d8ed6edfa256fca6c75759fb378e7a1cd 221216 libgnutls-openssl27_2.12.20-7_amd64.deb Checksums-Sha256: 4a69d1cb0d04157ef7b0dc5912e4fd1132e7d9743c8241625f683b745424e5ac 2038 gnutls26_2.12.20-7.dsc 4884eafcc8383ed23209199bbc72ad04f4eb94955a50a594125ff34c6889c564 7231438 gnutls26_2.12.20.orig.tar.bz2 771ac11b6f9f304a57947099ac0ea6b5ea720a196031235f9d740be0d0ae22a4 30571 gnutls26_2.12.20-7.debian.tar.gz f0239f195ad4ba2a324c454735a55527d610aaf10c36c72e20a8f40795667fce 2623250 gnutls26-doc_2.12.20-7_all.deb 620f01bb6db091b2e731d4acbb5c237e883a5bb164429d8c7e1647921ba3e613 747126 libgnutls-dev_2.12.20-7_amd64.deb 8c8d239ca519e31db147fc5a882f025d8aa4bd24a13f4da39582945b7b05040c 618584 libgnutls26_2.12.20-7_amd64.deb da925b2d75dc746847dacee0d2c0dbc94081d10acfbd966ef46f997c493fcc3d 1958034 libgnutls26-dbg_2.12.20-7_amd64.deb a7172c0e717fda7f7197b8730f6bd4b9ce165a0f640f56c8f5f47610b6a15553 394318 gnutls-bin_3.0.22-3+really2.12.20-7_amd64.deb 01c2453978469d81448402c36c865cbf20e88338c97e00a50f27d4d176d19e7a 269200 guile-gnutls_3.0.22-3+really2.12.20-7_amd64.deb 9e1e24b0e915288af7e837897a915d8bea17fbdd4e3da9e4e483205618f1c01a 222654 libgnutlsxx27_2.12.20-7_amd64.deb fb459e62c22facaec5c89fb26325253356ed8dab9da21f48709466f8c87972d9 221216 libgnutls-openssl27_2.12.20-7_amd64.deb Files: 5fc66d89fc7f47a29af3216616ed5eac 2038 libs optional gnutls26_2.12.20-7.dsc f1dea97da5d4dcdbc675720c9aad9ee3 7231438 libs optional gnutls26_2.12.20.orig.tar.bz2 9875bcd28e44d9496d9d920544620429 30571 libs optional gnutls26_2.12.20-7.debian.tar.gz e3bf1a597ea768c4c68d7396c85e97f1 2623250 doc optional gnutls26-doc_2.12.20-7_all.deb 10445e349df22d5c7fcdefacf104879a 747126 libdevel optional libgnutls-dev_2.12.20-7_amd64.deb 49d10bb73d838d6fa480065460c16872 618584 libs standard libgnutls26_2.12.20-7_amd64.deb 92baebbb4653c3d9964bd45100d84d74 1958034 debug extra libgnutls26-dbg_2.12.20-7_amd64.deb baf2523a7109b3140abe52735d63bc04 394318 net optional gnutls-bin_3.0.22-3+really2.12.20-7_amd64.deb f5c0436ff05a9a56ce60778e1991e92f 269200 lisp optional guile-gnutls_3.0.22-3+really2.12.20-7_amd64.deb a98d092f37c9a6bc95b0c0ecdf3aab18 222654 libs extra libgnutlsxx27_2.12.20-7_amd64.deb ee6f921ee306884fbb9e84c641563326 221216 libs standard libgnutls-openssl27_2.12.20-7_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEAREDAAYFAlGgVfUACgkQHTOcZYuNdmP+2ACgh+aTDScMjVEGavLE+AiKy2x1 JcAAoKCD/s+gtwHlAJ4uvLUr/f//FN7s =Ytb/ -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1ujd3w-0007po...@franck.debian.org
Accepted libgcrypt11 1.5.0-5+deb7u1 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Sat, 27 Jul 2013 13:41:59 +0200 Source: libgcrypt11 Binary: libgcrypt11-doc libgcrypt11-dev libgcrypt11-dbg libgcrypt11 libgcrypt11-udeb Architecture: source all i386 Version: 1.5.0-5+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: libgcrypt11 - LGPL Crypto library - runtime library libgcrypt11-dbg - LGPL Crypto library - debugger files libgcrypt11-dev - LGPL Crypto library - development files libgcrypt11-doc - LGPL Crypto library - documentation libgcrypt11-udeb - LGPL Crypto library - runtime library (udeb) Changes: libgcrypt11 (1.5.0-5+deb7u1) wheezy-security; urgency=high . * Pull code changes from 1.5.3 security fix release from upstream GIT: + [35_bug-in-mpi_powm-for-e-0.patch] mpi/mpi-pow.c (gcry_mpi_powm) - For a zero exponent, make sure that the result has been allocated. + [36_Mitigate-flush-reload-cache-attack-on-RSA.patch] Mitigate a flush+reload cache attack on RSA secret exponents. <http://eprint.iacr.org/2013/448> This fixes CVE-2013-4242. Checksums-Sha1: 79b09cc8428d5e71441b134f5d6ad3b004835c21 1856 libgcrypt11_1.5.0-5+deb7u1.dsc 3e776d44375dc1a710560b98ae8437d5da6e32cf 1433506 libgcrypt11_1.5.0.orig.tar.bz2 0119c81f9ae77ca0766ec9b6a8d4b899e4e089e5 20028 libgcrypt11_1.5.0-5+deb7u1.debian.tar.gz 719aeb41040bdf78b14aaa8a657a2ed556509e26 683124 libgcrypt11-doc_1.5.0-5+deb7u1_all.deb 3155cc44dc0f35f98577ecc7aecd8372a9f03553 400298 libgcrypt11-dev_1.5.0-5+deb7u1_i386.deb 2707840337e58dc0b27a53849b30d964714a8def 1154126 libgcrypt11-dbg_1.5.0-5+deb7u1_i386.deb 8492b63273a57733c140dd92dc1557e2539b3c45 299970 libgcrypt11_1.5.0-5+deb7u1_i386.deb 95726ac358915fdc82a4e6a41dc59afd15daf1a7 211142 libgcrypt11-udeb_1.5.0-5+deb7u1_i386.udeb Checksums-Sha256: b5c1fd9ff63f941801d913ad556abd34c7113ff6de8594a6d8fd17e56f28f932 1856 libgcrypt11_1.5.0-5+deb7u1.dsc 4b62fc516004940a0571025401a0581d49199f1a76dfb5ce6fd63f50db8173fa 1433506 libgcrypt11_1.5.0.orig.tar.bz2 d444b3956f1699df631e5d45540a40d566759c6da10cc064c0d34f6a872db7ca 20028 libgcrypt11_1.5.0-5+deb7u1.debian.tar.gz cbdea994d0d0bcf95bcd373ed68e470a34cfde53ce1b8237140221171a86118f 683124 libgcrypt11-doc_1.5.0-5+deb7u1_all.deb f3ed16e73c3c6fce9e6ca51a03ce1de3e91689927153f06170615d801d87f0d8 400298 libgcrypt11-dev_1.5.0-5+deb7u1_i386.deb 5c02831f4be2c0f1540a727e40c13420c04485f9642b7d4d647c32002362f862 1154126 libgcrypt11-dbg_1.5.0-5+deb7u1_i386.deb b0148ca80eadc403a65148442c9adb645a22888f19d769191e5a5b87692ee4d1 299970 libgcrypt11_1.5.0-5+deb7u1_i386.deb 0a986107c8f64f76a13b793f00df72fbc45fd242b5013337717366986a86d1ae 211142 libgcrypt11-udeb_1.5.0-5+deb7u1_i386.udeb Files: 401e2678512ad45fba1f146323462885 1856 libs optional libgcrypt11_1.5.0-5+deb7u1.dsc 693f9c64d50c908bc4d6e01da3ff76d8 1433506 libs optional libgcrypt11_1.5.0.orig.tar.bz2 cbf3d237f5e1cc762cd0270ed1d78940 20028 libs optional libgcrypt11_1.5.0-5+deb7u1.debian.tar.gz c5d12f9bb3fdfe6811c4dec3bc3e445d 683124 doc optional libgcrypt11-doc_1.5.0-5+deb7u1_all.deb b977ed55703d501fc5e2c821dd15f5d2 400298 libdevel optional libgcrypt11-dev_1.5.0-5+deb7u1_i386.deb a4924dabe83bef05beaee7e71c75b280 1154126 debug extra libgcrypt11-dbg_1.5.0-5+deb7u1_i386.deb f8d73191e15de482c3ce13aebf232d78 299970 libs standard libgcrypt11_1.5.0-5+deb7u1_i386.deb b370516cfbe74e4d7cb423fa88e450be 211142 debian-installer optional libgcrypt11-udeb_1.5.0-5+deb7u1_i386.udeb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEAREDAAYFAlHzt74ACgkQHTOcZYuNdmMeeACdHzwV1VpJlriAhaabdIXwsvRO 23sAn1NTDFQNKt/cKqn+Lu6w5yl/cSbE =w5ng -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1v50i9-00065d...@franck.debian.org
Accepted libgcrypt11 1.4.5-2+squeeze1 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: RIPEMD160 Format: 1.8 Date: Sat, 27 Jul 2013 13:42:31 +0200 Source: libgcrypt11 Binary: libgcrypt11-doc libgcrypt11-dev libgcrypt11-dbg libgcrypt11 Architecture: source all i386 Version: 1.4.5-2+squeeze1 Distribution: squeeze-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: libgcrypt11 - LGPL Crypto library - runtime library libgcrypt11-dbg - LGPL Crypto library - debugger files libgcrypt11-dev - LGPL Crypto library - development files libgcrypt11-doc - LGPL Crypto library - documentation Changes: libgcrypt11 (1.4.5-2+squeeze1) squeeze-security; urgency=high . * Pull and unfuzzz code changes from 1.5.3 security fix release from upstream GIT: + [35_bug-in-mpi_powm-for-e-0.patch] mpi/mpi-pow.c (gcry_mpi_powm) - For a zero exponent, make sure that the result has been allocated. + [36_Mitigate-flush-reload-cache-attack-on-RSA.patch] Mitigate a flush+reload cache attack on RSA secret exponents. <http://eprint.iacr.org/2013/448> This fixes CVE-2013-4242. Checksums-Sha1: 7580ed55ec9940663dcdfe83a8df7933ee80d61e 1621 libgcrypt11_1.4.5-2+squeeze1.dsc 8d83a60ca55f2ea40b5d5bc99463905b7a1dcb56 1419443 libgcrypt11_1.4.5.orig.tar.gz 87507dc18a9702d9d548939b10a8c595790c84b4 14831 libgcrypt11_1.4.5-2+squeeze1.debian.tar.gz adf6e51d9de0c3a1181056567e2573d866b97859 673248 libgcrypt11-doc_1.4.5-2+squeeze1_all.deb 85069cffb0fd477bde910f378df0d2324d22fbf5 362718 libgcrypt11-dev_1.4.5-2+squeeze1_i386.deb 81308154ddcc800733c7aba1658879ee99279a90 362802 libgcrypt11-dbg_1.4.5-2+squeeze1_i386.deb f5cb06d23745fd1ceec23deb60a9081cf2ebf828 266680 libgcrypt11_1.4.5-2+squeeze1_i386.deb Checksums-Sha256: 0cabaf7be5011705e0fc3d26893ae16aef22e21785114d9c274219eb310f3d38 1621 libgcrypt11_1.4.5-2+squeeze1.dsc 01652928917ad47e91ab8e0c150d62e0ef288f13b77842367c832109c3af788f 1419443 libgcrypt11_1.4.5.orig.tar.gz 6256e21e9ce18ba37d626cd3a47961ef900f2cbb8a264132820502e1181ab0e3 14831 libgcrypt11_1.4.5-2+squeeze1.debian.tar.gz 82ce2b98e3aaef2d76aaa2058a0c826005c484e08e2d65d30cfa6dab345655d9 673248 libgcrypt11-doc_1.4.5-2+squeeze1_all.deb 05f154e8da3975460dcfe7b389b8dec7b67f446fde3978601f51d175e21d8422 362718 libgcrypt11-dev_1.4.5-2+squeeze1_i386.deb 4d177d2ef67bc04ca9e803fa9d02329311c121f131a20db43b4e99d4792ce4d0 362802 libgcrypt11-dbg_1.4.5-2+squeeze1_i386.deb 0dac3fc3e29e14044296b2917eac0b2dc2c4d4b5c9a586b9b6991b7e16854958 266680 libgcrypt11_1.4.5-2+squeeze1_i386.deb Files: 910cdc15183932eb304659a0b0cf4b53 1621 libs optional libgcrypt11_1.4.5-2+squeeze1.dsc 325294c12e7b99d82dee3a8bf8c2c28e 1419443 libs optional libgcrypt11_1.4.5.orig.tar.gz 95bba6c23888cf1a5efb338e11f03394 14831 libs optional libgcrypt11_1.4.5-2+squeeze1.debian.tar.gz c858b4cda7687d2f448ceaf3dc8528a6 673248 doc optional libgcrypt11-doc_1.4.5-2+squeeze1_all.deb 4a105e1ab8fd25e7a8edb3eccac6e743 362718 libdevel optional libgcrypt11-dev_1.4.5-2+squeeze1_i386.deb 0be84951fbf1f234458a2f8410fb77fa 362802 debug extra libgcrypt11-dbg_1.4.5-2+squeeze1_i386.deb a7a5ec2992392feaf8e05a517ed71215 266680 libs standard libgcrypt11_1.4.5-2+squeeze1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEAREDAAYFAlHztEIACgkQHTOcZYuNdmOwIQCfXwvZatlvIv5WL1I2xvClbl3q aqEAn1qeJ3xywPKo9MjA4twah/g1alVm =ob7G -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1v8bov-p4...@franck.debian.org
Accepted gnutls26 2.12.20-8 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 15 Feb 2014 18:27:37 +0100 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls26-doc guile-gnutls libgnutlsxx27 libgnutls-openssl27 Architecture: source all i386 Version: 2.12.20-8 Distribution: wheezy-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls26-doc - GNU TLS library 2.x - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-dev - GNU TLS library - development files libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls26 - GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols libgnutlsxx27 - GNU TLS library - C++ runtime library Changes: gnutls26 (2.12.20-8) wheezy-security; urgency=high . * 26_fix_rejection-of-v1-intermedi.diff pulled and unfuzzed from GIT 3.x: A version 1 intermediate certificate will be considered as a CA certificate by default (something that deviates from the documented behavior). CVE-2014-1959 / GNUTLS-SA-2014-1 Checksums-Sha1: 9ae9f7c2d2a491e15253c4d54fefbf6fa4b6cfdd 2673 gnutls26_2.12.20-8.dsc 95df4faa363db02154c4a22282813a660467518e 30956 gnutls26_2.12.20-8.debian.tar.gz d2e752e9448098025cffb679e928e2e9b42e1ef8 2623336 gnutls26-doc_2.12.20-8_all.deb a4122164e3f6738ab3f51e55cb3abb1bff6ef136 727898 libgnutls-dev_2.12.20-8_i386.deb 01ee8f88083ad2b647fbd3c3ba18db4471b140f1 605508 libgnutls26_2.12.20-8_i386.deb a42c7f021197bd5d7ce58df3607263a639f0973f 1817918 libgnutls26-dbg_2.12.20-8_i386.deb a6ac86deb4faa9cad920f7b7d9cfad40e334be29 387498 gnutls-bin_3.0.22-3+really2.12.20-8_i386.deb 345103a4737e745e607df921366d68f4f093219b 268136 guile-gnutls_3.0.22-3+really2.12.20-8_i386.deb 9f5f3bbdd1d4dfe4eb53b0c80b0fd80730f9f317 223622 libgnutlsxx27_2.12.20-8_i386.deb b52d8ee5a211ad6833a899bf7eb032d967f55202 221094 libgnutls-openssl27_2.12.20-8_i386.deb Checksums-Sha256: f9fec768e36e98ce2af65f80b86f232fc98c70cc9f2927ecfeeb66562ec7ee7b 2673 gnutls26_2.12.20-8.dsc 6a94bf64ee7ee7837f67e0aba5250a99e418f7f11594a6bdac20b740bdc6a25a 30956 gnutls26_2.12.20-8.debian.tar.gz 60d5bd1dfdc55d0e97714d088d47e5a1700a072172232c3476fc1c83092932ee 2623336 gnutls26-doc_2.12.20-8_all.deb 8598c4eaf4004b2acca141194049a8479b1e371b4861fc406232bff91482dbcf 727898 libgnutls-dev_2.12.20-8_i386.deb 2ccadbe5fdbc2e659927afb0d2cb8c0e8cd93e81ba2d86ae3e6833ad101d7d42 605508 libgnutls26_2.12.20-8_i386.deb 5a203d0a7f5f26f13466fe2cb2d852d8abbb6ff69092a98628335befd6d98763 1817918 libgnutls26-dbg_2.12.20-8_i386.deb e26f562ad4edc75c1391e93c2350397c17e483da8970bfa8f26579eaaf559dc2 387498 gnutls-bin_3.0.22-3+really2.12.20-8_i386.deb d0d5c184e15bd0760c10abdc00257a8e0673f6d1e6d309f1dbeeb0ab91f43af1 268136 guile-gnutls_3.0.22-3+really2.12.20-8_i386.deb 1c1b5915fb97cdd7100ca571a5e39d30e1c97c21be04aac1145973bc6566e8ee 223622 libgnutlsxx27_2.12.20-8_i386.deb be86d303a5940fc18436fa32f374be2e555b66c71e46cb56bb967ae5ed1df88b 221094 libgnutls-openssl27_2.12.20-8_i386.deb Files: 910bda75120d5c8728d1073de630e35b 2673 libs optional gnutls26_2.12.20-8.dsc dacb0aa71eff3c4c1d97c29ea0693a6b 30956 libs optional gnutls26_2.12.20-8.debian.tar.gz 4b3c8778ce27558bd53db19d6e8dcd55 2623336 doc optional gnutls26-doc_2.12.20-8_all.deb 50f3dee284eb8204aa1e3ccbb375c97b 727898 libdevel optional libgnutls-dev_2.12.20-8_i386.deb c223b5fe42622867557c35c08707799c 605508 libs standard libgnutls26_2.12.20-8_i386.deb 7bf3fac175ede46607f4ce34d9ef4eec 1817918 debug extra libgnutls26-dbg_2.12.20-8_i386.deb fcb423a48ad012ba3693e447c4f8cef7 387498 net optional gnutls-bin_3.0.22-3+really2.12.20-8_i386.deb 76a090b17ed166783a6a96bf8ef38caf 268136 lisp optional guile-gnutls_3.0.22-3+really2.12.20-8_i386.deb 0fdbe357ba83b936e5aa603ffda89035 223622 libs extra libgnutlsxx27_2.12.20-8_i386.deb 3d0599e6f5d51d0c7f410458dd6f365f 221094 libs standard libgnutls-openssl27_2.12.20-8_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCgAGBQJTAGgPAAoJEKVPAYVDghSEcBoP/AxuYq7QMbpkORa38tRGSnj5 AE8vDwNVsyUXqiBSrYTgcnrxMwy0py/DKLiy1hOByjRh7lmHo5jE3KRcN00Qx3dk IHK7wywzWPn0rWrmEI+JsQ+39xRVC2HoRJU3n3BiimWvw6age9sfgEagGHPxfgTa 45L3QTTwrP1nKlOZC/CpVha1jeMfMix30AG1PIsgUgqNZE4rvzTB2XQbY2aX3qPs vc5RLjw76pklikWGi2sLrFy/PXOqhZthpGFrFS8CdW2gYBFSc8yoL9aJaPVlzU11 R+i8hit/VSRvba2jNk3D0pmxE853hHUuGUQFKzpNL0hM8o4Qk97tIyLeW+SbSVtc oyAXx9uYq1Y1mpbwaFiuV5lAcam49MvC+D18foVntTp4sOKiXzde8uduN0sAyXL9 WdMIrnIDESsemPrEC8YjhwS7kaFbMDvtQt+PGUe5VyasIh34apYuLXKuvyztC4IH bcUR2s6yHteqDivbV2RF+zLLenlkz5mrS/PBs0DtTKNXIKBvzpd1Sp4du+dhgzAZ i67NTaHFFcnVc3JNhY4nxIk88ZmXoxPZ8fhHS5UhHW7qQBBO5Nxe7S6zAwNHJRVa HwzQ57DQp7RGdxr/1dzxWYzRX5y9r9lISak9jrsa4sMERVgloS0gR+HnUuSTPpng qM+OTCEU80G64IEnTBbB =5Vsp -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject
Accepted gnutls26 2.12.20-8+deb7u1 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 01 Mar 2014 07:44:51 +0100 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls26-doc guile-gnutls libgnutlsxx27 libgnutls-openssl27 Architecture: source all i386 Version: 2.12.20-8+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls26-doc - GNU TLS library 2.x - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-dev - GNU TLS library - development files libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls26 - GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols libgnutlsxx27 - GNU TLS library - C++ runtime library Changes: gnutls26 (2.12.20-8+deb7u1) wheezy-security; urgency=high . * 38_CVE-2014-0092.diff by Nikos Mavrogiannopoulos: Fix certificate validation issue. CVE-2014-0092 Checksums-Sha1: c7b4fc381bd2d4c4fd688521446d5856abfd6678 2701 gnutls26_2.12.20-8+deb7u1.dsc afa2253e402c9f0a0f77ab9ea57936d5c695a237 31500 gnutls26_2.12.20-8+deb7u1.debian.tar.gz ac71822baee3ebd4b29c48740dd884133df9837a 2623462 gnutls26-doc_2.12.20-8+deb7u1_all.deb 8897a12c628126a4921223ec0a8903070ec0a573 728040 libgnutls-dev_2.12.20-8+deb7u1_i386.deb a2be401aa33ecf67290079b97804e8de2a7f4da2 605698 libgnutls26_2.12.20-8+deb7u1_i386.deb 4adb06773146ec9e66e64cd3be3e06ffbb6caee9 1818082 libgnutls26-dbg_2.12.20-8+deb7u1_i386.deb e5d312b8fbc5b737d148c682a76c0754390a86b2 387592 gnutls-bin_3.0.22-3+really2.12.20-8+deb7u1_i386.deb 0a31c66a2f595926265dfd341729ed6f96e9cf2d 268226 guile-gnutls_3.0.22-3+really2.12.20-8+deb7u1_i386.deb e0a5b3c9cfbb30fa0d58503a6822479c5974efad 223706 libgnutlsxx27_2.12.20-8+deb7u1_i386.deb 710607dd6f11ab784eb90fdc95aecc2043d9c57c 221178 libgnutls-openssl27_2.12.20-8+deb7u1_i386.deb Checksums-Sha256: 3543293ad7de86b2d683276d0e04cbddfc75233855a124eaca6900149b020899 2701 gnutls26_2.12.20-8+deb7u1.dsc dc347acd3e44dd91b84b6a73aafe7750204c70a58e12f530ed8ddc5e3476fc47 31500 gnutls26_2.12.20-8+deb7u1.debian.tar.gz 32c28776bfe0f1489046d64ebb8aa27ce57d96b56f899bd9af828cace8a1cdd5 2623462 gnutls26-doc_2.12.20-8+deb7u1_all.deb 4c8e02796bf05fa4041e1c6085cfb7310389ab68a7eb670fcd8cfdc65d547d9b 728040 libgnutls-dev_2.12.20-8+deb7u1_i386.deb c533502392830d6c4382c13cc8ebd17c23625ae13085f9d639e6adf1d1f8a559 605698 libgnutls26_2.12.20-8+deb7u1_i386.deb c71d7c255cdb88030a20928fb5e36a4e5db1cc589406d72e9b31c6186108f1fe 1818082 libgnutls26-dbg_2.12.20-8+deb7u1_i386.deb df87fe209f4cfedde55aa4106f8be812be915aa751acdf595c20523286f5a4e4 387592 gnutls-bin_3.0.22-3+really2.12.20-8+deb7u1_i386.deb caf5d6fdc9437ef5a005d4ccd63aab2a335f42852d44509ecd66074b96488412 268226 guile-gnutls_3.0.22-3+really2.12.20-8+deb7u1_i386.deb bf2ff5442b78681eb4e49026c9a81222337575bc8750d27b63852cc87da98b23 223706 libgnutlsxx27_2.12.20-8+deb7u1_i386.deb a47ef6ca3f72abfc2f82d7ecfee845d645698e546e633014a5efa219cce24493 221178 libgnutls-openssl27_2.12.20-8+deb7u1_i386.deb Files: 27d40d452b1c01b624f276fb1157c795 2701 libs optional gnutls26_2.12.20-8+deb7u1.dsc b2456f4b494a8318350da8cc096077aa 31500 libs optional gnutls26_2.12.20-8+deb7u1.debian.tar.gz bbed32f099a16c0d80c8223cad1f5102 2623462 doc optional gnutls26-doc_2.12.20-8+deb7u1_all.deb c16d9265ba9af0614b19e8ffe6db5493 728040 libdevel optional libgnutls-dev_2.12.20-8+deb7u1_i386.deb ecbfeee606490fa463bae15cfa0f65bf 605698 libs standard libgnutls26_2.12.20-8+deb7u1_i386.deb b263c3246caffc18925b69ec093c21d7 1818082 debug extra libgnutls26-dbg_2.12.20-8+deb7u1_i386.deb 60a63f8286b8bfdb3c85fcd398f49d0d 387592 net optional gnutls-bin_3.0.22-3+really2.12.20-8+deb7u1_i386.deb 1e2c139b58a183260687fc7407abcd25 268226 lisp optional guile-gnutls_3.0.22-3+really2.12.20-8+deb7u1_i386.deb 7abbfbcc74f10bd83b2b77db0ab78c78 223706 libs extra libgnutlsxx27_2.12.20-8+deb7u1_i386.deb 15bdaaa8bec21d691fb37b764e9bd2a1 221178 libs standard libgnutls-openssl27_2.12.20-8+deb7u1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCgAGBQJTEaFLAAoJEKVPAYVDghSEus8QAIhHRei8qsxCvd74mYBocCHu vEGA1uXGE6W0OhyQq+1EirkRoHDrazTmUH7fwheG39suRGqq0uEqashgl5OzMXbj L8dTJbdB4axl1+oi2bSlD2dlkANk2agnLm9iAVLPTeTiE5t7tUJyAhNimCYiS2Y0 PS62+DxUn5XNdNdiNhrAg+9jFDQr9C0sV+80+hREUbRw0fcRZ/wqHkCQK8VWBgQY uvsHxU8O6wPbgITztaaqRbSq1efhRNUV4aDRXUHmYhV4rDFAXTIoyHR28gtLx7ko Iaa1O+2z615IkKNyN2qIaKGO6vszoSzQv5w/3bdu3WDbpxxhKFqygDbyLdyRA10G hBRT9suQcdaPd4SsS8LyZGtGjLIVIqsEkSfU2zTRpaQ6donPI/3qSgY9cYO8US+f rnpPCLjXqgFr0IgFJ4micKhiPK/Ut/ysjfNCJwGsf6umEtxAiphzj6SP4Kp2Q6/z ZxE/tqVfywW77I+W75PfvcW+6406c7Lz0iwF/As/BmUR75vM+yH3M+mwDy1yT1cO 8uCzp1hdvZi7c638fRgyil9XW73R4GeNOz112k9d6Oyr35lBReykoKp0IKrg3bHE bQIzEPzs3+LDExPH+OO/LuvPU84x8qJMkIqbufyWPMRIKFVoqQ5W1nEEgWLKtUFY oWu8+wqY/CWGz95vN/4n =5vaF -END PGP SIGNATURE- -- To UNSUBSCRIBE
Accepted gnutls26 2.8.6-1+squeeze3 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 01 Mar 2014 08:02:14 +0100 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls-doc guile-gnutls Architecture: source all i386 Version: 2.8.6-1+squeeze3 Distribution: oldstable-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - the GNU TLS library - commandline utilities gnutls-doc - the GNU TLS library - documentation and examples guile-gnutls - the GNU TLS library - GNU Guile bindings libgnutls-dev - the GNU TLS library - development files libgnutls26 - the GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols Changes: gnutls26 (2.8.6-1+squeeze3) oldstable-security; urgency=high . * 22_gnutls-2.8.5-cve-2014-0092.patch by Nikos Mavrogiannopoulos: Fix certificate validation issue. CVE-2014-0092 Checksums-Sha1: 7b59ddb1308ecc383240c8bfa4392b31f019132e 2293 gnutls26_2.8.6-1+squeeze3.dsc 02aa20af661ec9272ef8e9e8b449de00ab8ba549 21116 gnutls26_2.8.6-1+squeeze3.debian.tar.gz a90edcf31c6f07fc159985335ab9e34cf133a8fe 3065274 gnutls-doc_2.8.6-1+squeeze3_all.deb da7c01bc3877c2973308492c2d431dca85cab9ff 591528 libgnutls-dev_2.8.6-1+squeeze3_i386.deb 51f576d7fe5e1a1d00f0f18808f6a4878e2af199 525900 libgnutls26_2.8.6-1+squeeze3_i386.deb 5097425e61d16f7f3035c6ff8035b06b64331638 1105146 libgnutls26-dbg_2.8.6-1+squeeze3_i386.deb ccd5724e22026ff6e023d1032ce4daed5de50440 319876 gnutls-bin_2.8.6-1+squeeze3_i386.deb 70e241d64ec763628f13af8efc20b9b27dbddf6c 253160 guile-gnutls_2.8.6-1+squeeze3_i386.deb Checksums-Sha256: 6741804854f0ec2761d14e86f27c35a69b15aaeb65dbe7db745429bd247bda75 2293 gnutls26_2.8.6-1+squeeze3.dsc dcbec2ea9be37c11cf9b47d1c4fc55bbcf4503cfdc3e66e0ea99375f5606f3dd 21116 gnutls26_2.8.6-1+squeeze3.debian.tar.gz f15472e04652a1a9d216c00fd4770fb67fc11b7ea1ff74adcd30564541eb50a6 3065274 gnutls-doc_2.8.6-1+squeeze3_all.deb 0d71f5bd6453fdcf36b0694d2ff3eef968deb2c88f16f36e666ae6913ba8714f 591528 libgnutls-dev_2.8.6-1+squeeze3_i386.deb c6d754985ac4da6dec8d4fdbab7101cf9c6b10867cf6788c86e4bf5f42d49a3d 525900 libgnutls26_2.8.6-1+squeeze3_i386.deb 115b5baf7c2eeff046324663a7e89f540bfb82760ccb8142761d69d668b0be9e 1105146 libgnutls26-dbg_2.8.6-1+squeeze3_i386.deb 809b6ccd49fdec7e7443dd633144e6d4e8766ad9a9aff8ad8114b40f31337ede 319876 gnutls-bin_2.8.6-1+squeeze3_i386.deb 209659f7f96d115a3619cd58b3f5a22f4268ce9f0a2248635e43c817b35e4aff 253160 guile-gnutls_2.8.6-1+squeeze3_i386.deb Files: 439fd1f082667476fde81bc98fa6ef57 2293 libs optional gnutls26_2.8.6-1+squeeze3.dsc 9763b3f1f12595cf9f80ec5529abef20 21116 libs optional gnutls26_2.8.6-1+squeeze3.debian.tar.gz 153d0f872313eff69ba34912b04e63d0 3065274 doc optional gnutls-doc_2.8.6-1+squeeze3_all.deb 47c76e8afcde79cdaea75a22f9696e4c 591528 libdevel optional libgnutls-dev_2.8.6-1+squeeze3_i386.deb 1dad238ef04e82ee980b753b5f02e7a8 525900 libs standard libgnutls26_2.8.6-1+squeeze3_i386.deb 92af1241508228c0638147220b489936 1105146 debug extra libgnutls26-dbg_2.8.6-1+squeeze3_i386.deb 6638a7fe8cd677ebd966e701f49363a3 319876 net optional gnutls-bin_2.8.6-1+squeeze3_i386.deb 941bb6236b04fc593464b1e67e2b4368 253160 lisp optional guile-gnutls_2.8.6-1+squeeze3_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCgAGBQJTEaFCAAoJEKVPAYVDghSE0DsP/00bUPfYllK7x4kYuaaT+mXY SdPNN2255s7QM4of1K3NXmDop/03EpmTEtnotyvTE4sMqNSjpdNV+3ARWXw7fxBp bvyZMuj8zCSBX6wWKkSXahlrKdgtvkRzithyPS2a8LB9KdLZVyc+7AwXuCYvCJrl xKkHFOpfXLtMGBnFpONlQHj3ih1UWgycwdkZltRKqAmYNVCokFjeWcHr525apnkv TjlyQ1Y9abo5dXdZGC4lwWs6NR6WAnIPGxfTWI+hnpINCVvQmsVi3HN5goduVOoQ ngQ7DmX6rlkRohluPn3cWXg1D0Ovo+puNu8Y2oloIYumdS2G93kzNNxi6UtOplMP sWFJUkN2tMFi1ggSFvGNtFcshs0MMfvfj+A8P5+RKxbo7q0gA/5+x0hpeT0TZgky 1C/fQYnhtdju3MRWrGbP8sdxTzaVHfv8JoAof/dA5R2dpXr1DxCixxXK8Q8Pg1ch MmUNNZa1AP2eNPH3IY+J3KGqdcnbSkd9x+3s/1OMyOlsKZ6nzA0qzwDQ6kOqg062 JKrNOdNxcl4T2x3wfs707Wz7siWxuBTLqg/OHTAnbJmNKFIbZAcy0aVCQ8kx1bo7 PiSe3IuqkY2gwCssITWanfAZ/qdmqJ0lv7Us8MbAQXVuq/fnkjqa7rGm4EMeRZHn u7D9g8fGT/NjV3mrrPz3 =WiH1 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wmhoq-0002ij...@franck.debian.org
Accepted gnutls26 2.12.20-8+deb7u2 (source all i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 31 May 2014 16:27:40 +0200 Source: gnutls26 Binary: libgnutls-dev libgnutls26 libgnutls26-dbg gnutls-bin gnutls26-doc guile-gnutls libgnutlsxx27 libgnutls-openssl27 Architecture: source all i386 Version: 2.12.20-8+deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls26-doc - GNU TLS library 2.x - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-dev - GNU TLS library - development files libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls26 - GNU TLS library - runtime library libgnutls26-dbg - GNU TLS library - debugger symbols libgnutlsxx27 - GNU TLS library - C++ runtime library Changes: gnutls26 (2.12.20-8+deb7u2) wheezy-security; urgency=high . * 39_Prevent-memory-corruption.diff from upstream GIT. Fix memory corruption on client side caused by specially crafted ServerHello. GNUTLS-SA-2014-3 / CVE-2014-3466 Checksums-Sha1: 1107acec67477e9f824a2b6b97b68da148e097fb 2684 gnutls26_2.12.20-8+deb7u2.dsc e84129b4d62577ed96aca6f95ef3050b29c4e179 32094 gnutls26_2.12.20-8+deb7u2.debian.tar.gz 74247f7e7eeeb997811effba29882b6b21d011c0 2623590 gnutls26-doc_2.12.20-8+deb7u2_all.deb 268fc5a3e6d8183aab1f627fd54d86e5674cdcd7 728184 libgnutls-dev_2.12.20-8+deb7u2_i386.deb 3acff1203d5d73383d4225f089c74892aeed4c14 605920 libgnutls26_2.12.20-8+deb7u2_i386.deb bfde2c01e4f5816583991a014b6616f48f4e81fa 1818112 libgnutls26-dbg_2.12.20-8+deb7u2_i386.deb 704a6e28fdc40099210f29015f951309a568b181 387644 gnutls-bin_3.0.22-3+really2.12.20-8+deb7u2_i386.deb 64aa19c579b07ee5f45203decc58eda40b6e1bd5 268312 guile-gnutls_3.0.22-3+really2.12.20-8+deb7u2_i386.deb 233b14568a05fd0a9fbe5f5511d39decbe9cee11 223800 libgnutlsxx27_2.12.20-8+deb7u2_i386.deb 83154ed52e9700ce0e495fe822357b18b236a6ce 221278 libgnutls-openssl27_2.12.20-8+deb7u2_i386.deb Checksums-Sha256: cb4b37e39f7dd1ada4beb7a70aa1f933eb672e65addc00bba4963557bd218657 2684 gnutls26_2.12.20-8+deb7u2.dsc c0959ad818ec8fff46f6fdaa14279996e7c7de3ddcfc06466643af69d1dfe07f 32094 gnutls26_2.12.20-8+deb7u2.debian.tar.gz 9a2247a2efc61ba84cc69edff4f89e41ec82c191de2a1d04f5a9bfcc8330d0b6 2623590 gnutls26-doc_2.12.20-8+deb7u2_all.deb 18771b32995578fdb3dc2f3630da5f563a4afbdaa50cc2319238738cdc061f05 728184 libgnutls-dev_2.12.20-8+deb7u2_i386.deb 93d7050821b3abd374c3b4d8eb8cfa1aba4435439e1d4869d551131f27efdc8c 605920 libgnutls26_2.12.20-8+deb7u2_i386.deb 56dd1600426507ef4ee9638e60cf4cc1f8cfd03034f31f9e0fe092ce74af57fc 1818112 libgnutls26-dbg_2.12.20-8+deb7u2_i386.deb b7919190271b2b623d529c57b0060491fa48bbe0a1cf0caa2e8ec9b67c9b1eae 387644 gnutls-bin_3.0.22-3+really2.12.20-8+deb7u2_i386.deb f61afcef7e0dbfdffd855e74f47fb80abeb7b458eb1092cfc50858aa67e044f6 268312 guile-gnutls_3.0.22-3+really2.12.20-8+deb7u2_i386.deb 76e671e585145a639123335a5e03cf3639474b66c0e7d34af32fa4e2704440cf 223800 libgnutlsxx27_2.12.20-8+deb7u2_i386.deb d542868f82ffa200527685e99f6bc61759cf4c33a3fdc2f056ebe6e94f634255 221278 libgnutls-openssl27_2.12.20-8+deb7u2_i386.deb Files: ea3a216d513b9424d0dda3b49dc0c407 2684 libs optional gnutls26_2.12.20-8+deb7u2.dsc 1e100f0ae94c46e0b94a0da737a4c39c 32094 libs optional gnutls26_2.12.20-8+deb7u2.debian.tar.gz 52ed1ba60a215a5383bce67581c1e570 2623590 doc optional gnutls26-doc_2.12.20-8+deb7u2_all.deb 3117cb1b3dec697652c7eaaf2f149d21 728184 libdevel optional libgnutls-dev_2.12.20-8+deb7u2_i386.deb a50ba1a9c1184f73cf730ae1b2c2ecd6 605920 libs standard libgnutls26_2.12.20-8+deb7u2_i386.deb 6e6602639206b655f4331ce86094a361 1818112 debug extra libgnutls26-dbg_2.12.20-8+deb7u2_i386.deb 7af983aca07c45cf5012e8aa3174fee2 387644 net optional gnutls-bin_3.0.22-3+really2.12.20-8+deb7u2_i386.deb d6753af8bd5c00c90597f3fbd9fe21b8 268312 lisp optional guile-gnutls_3.0.22-3+really2.12.20-8+deb7u2_i386.deb fd58039c81c163e9346567f8f0a69578 223800 libs extra libgnutlsxx27_2.12.20-8+deb7u2_i386.deb 9cb2754cc549459d721783e4b9dd033a 221278 libs standard libgnutls-openssl27_2.12.20-8+deb7u2_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTigLYAAoJEKVPAYVDghSEqA8P+QEFB00J7ToTr2HQ4bKQgEbd R6RTgM+9L+qvlaQYAMhmjPiUKAgvWa0YbsH1aAb256zVKa5WvnNGRUmSa+PGONJp l6tP4P20VmcH9kg+7xsh1XVDuuDtxF9dZXBo4uo8JYqxXPCe/saEgECB4kao+qYF A1YlW6NLRF9bPTzRfcU2LJXztLIEAASfALr7YetEnPMO0UyJ2Q3TgU/4+B4EYlyu KaOeYKgxpzpP/IkGsIZluKup1MJ7TOJ2P4+I0Boc/vgLmNTv21ffUzVHgRsmU2/J m6P3cX6PJJ6jgRC9f3M5JBEFbJuDqqsPjRZEnpwawpNWK4k0HBHYFe/TsWQ9SowM VP8xxJsh1+DwK8heRGL4tbsPx/U17HjOvkOmwIN3sZ2Xm7zBX1jg6U/ChrNXhVyD YrFNwpBQsgOfHvT+YHcZfOlShDgrqrxtLcNbe67/Fp1+Qz/G7MwqhQZ1W20bM3wP 7/jioUlLRM+hLSPpTAbtxqpc5UzG0Sgtd/4ysVxyL/CGH4SGCIkVIpD0DsrKGbX3 x+GfAhJGY5evqAofDAoEGlJb2bIuToVoE3TYxQqIp1+Jgqhw4zjNwiwWuh7VmHgG 0QG5zgj0IeepvWDElYUMnla7crE0fc2gizS6QcVct93TVQUcVAbjr3Pl6IEquXWN 9ZPqxBxvS+YdyIs+Tdul
Accepted exim4 4.72-6+squeeze4 (source i386 all)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sat, 12 Jan 2013 11:22:07 +0100
Source: exim4
Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy
exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg
exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev
Architecture: source i386 all
Version: 4.72-6+squeeze4
Distribution: squeeze
Urgency: low
Maintainer: Exim4 Maintainers
Changed-By: Andreas Metzler
Description:
exim4 - metapackage to ease Exim MTA (v4) installation
exim4-base - support files for all Exim MTA (v4) packages
exim4-config - configuration for the Exim MTA (v4)
exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features
exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages
exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including
exiscan-ac
exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA (v4) packages
exim4-daemon-light - lightweight Exim MTA (v4) daemon
exim4-daemon-light-dbg - debugging symbols for the Exim MTA (v4) packages
exim4-dbg - debugging symbols for the Exim MTA (v4) packages
exim4-dev - header files for the Exim MTA (v4) packages
eximon4- monitor application for the Exim MTA (v4) (X11 interface)
Closes: 697057
Changes:
exim4 (4.72-6+squeeze4) squeeze; urgency=low
.
* Cherrypick [86_Dovecot-robustness.diff] from upstream GIT, a
robustness fix for the Dovecot authenticator.
* Use exim's ${quote:xxx} operator when invoking spfquery to disallow
bypassing of SPF validation by using special mailbox names. (Thanks to
Lekensteyn for diagnosis and testing.) Closes: #697057
Checksums-Sha1:
95c3aea2b0f81d33521ca3ce9cd6078f85b5ce74 2253 exim4_4.72-6+squeeze4.dsc
de4a6d7f001db51fed00d150d93764d48856578f 595974
exim4_4.72-6+squeeze4.debian.tar.gz
dc8dcf9115528863bf2e693a6918f8550fad063d 1013672
exim4-base_4.72-6+squeeze4_i386.deb
e1bff8b484f516e45ac0df884ec688a378b47e8b 188962
eximon4_4.72-6+squeeze4_i386.deb
e5646dd111dcab01252358c39523ff1a505277c2 549324
exim4-daemon-light_4.72-6+squeeze4_i386.deb
335f79894bf7d14ae365730d4368a921ab370aad 598482
exim4-daemon-heavy_4.72-6+squeeze4_i386.deb
4cad28797544ba7c874dac4ba248ae78c4676b11 810070
exim4-daemon-light-dbg_4.72-6+squeeze4_i386.deb
44044b2ec8ea9d8bec145228364cba717f241ee2 897640
exim4-daemon-heavy-dbg_4.72-6+squeeze4_i386.deb
4a61d9773fd36c72bb7b56e3a7e91fc1e88a 354476
exim4-dbg_4.72-6+squeeze4_i386.deb
57c6f925f997ce2be0be98d322781d55192803e0 160834
exim4-dev_4.72-6+squeeze4_i386.deb
bac02588262539a52b825589a6badde2af8899fb 464520
exim4-config_4.72-6+squeeze4_all.deb
4f7e1ac734ced8fa134cdf82601ebbe52c7ba1ff 7806 exim4_4.72-6+squeeze4_all.deb
Checksums-Sha256:
7f833c030a0cc34a393599c3aad991c85d6f6ee5a30c7001602163fe7cd1c442 2253
exim4_4.72-6+squeeze4.dsc
e7eb45d8eeb1abc7ea21ee02bb404aa8cdc58fe1f49d32231d90c1d3bc385fd6 595974
exim4_4.72-6+squeeze4.debian.tar.gz
35caaf90ea8619c48e74e7fbdcbecbfbee9b68e455727a1dbd5f6adad6f3238c 1013672
exim4-base_4.72-6+squeeze4_i386.deb
1b8ecd54905557ab3b5d018f23f72a9df8add22df2207ef453d2b5ded1e5a1a0 188962
eximon4_4.72-6+squeeze4_i386.deb
4eb0d2abaa167ea6121a6217d1f3cac97b9990ead660ae3160b7defdf4ffc864 549324
exim4-daemon-light_4.72-6+squeeze4_i386.deb
6f7866f864d1d41d82c4da73252ef6ec51074916d139f8f591e0cb03a26a704d 598482
exim4-daemon-heavy_4.72-6+squeeze4_i386.deb
8d6dfc0f050dc212fa185525931807f18f60ef9f0087d15d20a406f83b7cdb92 810070
exim4-daemon-light-dbg_4.72-6+squeeze4_i386.deb
f79153b9006fc6301fbe5f3f8e8490eeb29f0ba86b7b2060be3909a2d894c4d2 897640
exim4-daemon-heavy-dbg_4.72-6+squeeze4_i386.deb
b98adee18576d9b8a2b0471c24298c27a66160188655f0bd17168dbe78b4e4e2 354476
exim4-dbg_4.72-6+squeeze4_i386.deb
7ed65b7f7b3331ec819300dc574a504f39366510ba6cfe407551bf2324386eca 160834
exim4-dev_4.72-6+squeeze4_i386.deb
08f5e51027678d5609caf640502885bf9b43d9b4f3a109ea2366e6e29aa5341c 464520
exim4-config_4.72-6+squeeze4_all.deb
a3fb16b2533cba55202fe4623b0bc2de1d8dc173df864928a2a5b55ea28a8b54 7806
exim4_4.72-6+squeeze4_all.deb
Files:
5d6182236b82fcaec62edce22b5c5c4b 2253 mail standard exim4_4.72-6+squeeze4.dsc
7d2592c5679599fc2a35e2114d7d968b 595974 mail standard
exim4_4.72-6+squeeze4.debian.tar.gz
903989042b0f109f49054c42f0b3d8b6 1013672 mail standard
exim4-base_4.72-6+squeeze4_i386.deb
eae192f956e06a0e00b137c52149f81e 188962 mail optional
eximon4_4.72-6+squeeze4_i386.deb
a567ffce9c278820399eb52dfa61da93 549324 mail standard
exim4-daemon-light_4.72-6+squeeze4_i386.deb
79fb062093ef0d67118ac1505de43ebc 598482 mail optional
exim4-daemon-heavy_4.72-6+squeeze4_i386.deb
a495c4958ac70d13daec02bf89bcc3bd 810070 debug extra
exim4-daemon-light-dbg_4.72-6+squeeze4_i386.deb
fddfbca8104dba45d8a63d77858db950 897640 debug extra
exim4-daemon-heavy-dbg_4.72-6+squeeze4_i386.deb
3a822028cc119ae5c6c33ce1c7888956 354476 debug extra
exim4-dbg_4.72-6+squeeze4_i386.deb
44f8dfb21e9fcebef3547f10b15
Accepted exim4 4.80-7+deb7u1 (source i386 all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 21 Jul 2014 07:55:47 +0200 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev Architecture: source i386 all Version: 4.80-7+deb7u1 Distribution: wheezy Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon exim4-dbg - debugging symbols for the Exim MTA (utilities) exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Changes: exim4 (4.80-7+deb7u1) wheezy; urgency=high . * [87_double_expansion.diff] from upstream. Stop unwanted double expansion of arguments to mathematical comparison operations. Checksums-Sha1: 6727dbab24c5a56ffe2d41f85dddcd7d9eed849e 2803 exim4_4.80-7+deb7u1.dsc 98b55ac89043743322ef70c2269655f8edafde39 581920 exim4_4.80-7+deb7u1.debian.tar.gz 30b2f51b66b00309a7d0ee431c936a25a699a1b2 1036812 exim4-base_4.80-7+deb7u1_i386.deb 6840cec9f2185debe130f073dd0f8e1dbc34f13f 209818 eximon4_4.80-7+deb7u1_i386.deb 3e9ba3e44b68d02ee1eb6683d6f52f1fb2cd24f5 628286 exim4-daemon-light_4.80-7+deb7u1_i386.deb 3dca857a68c4ac8ed1263197e60f47964c8264b5 685932 exim4-daemon-heavy_4.80-7+deb7u1_i386.deb cd983a0a31de0266949f0b7e0b24f5d978c70a7e 1201832 exim4-daemon-light-dbg_4.80-7+deb7u1_i386.deb d68e3039c99dfb9d743d6e9e14b04f79b90af0c1 1348458 exim4-daemon-heavy-dbg_4.80-7+deb7u1_i386.deb 87c40aebbf6adc55c5ba72e4bfc200a018996b8d 440318 exim4-dbg_4.80-7+deb7u1_i386.deb c69a05acb699a2d1df17c468ba8ecbf1289c1c11 173972 exim4-dev_4.80-7+deb7u1_i386.deb 6540fded8b25202c1007136c0647a06b9111902e 477752 exim4-config_4.80-7+deb7u1_all.deb 59799321b1c0272cef9200ada502f2938226369f 7808 exim4_4.80-7+deb7u1_all.deb Checksums-Sha256: 31cfda47215854ed80ceb049a399b5a000c2e8f5d4a94a8323ae25b624e20fd2 2803 exim4_4.80-7+deb7u1.dsc 30cdc5b2eb814c2c32da4a056f15d9bbfe2a0e5a616d73c1a690148b5e68f726 581920 exim4_4.80-7+deb7u1.debian.tar.gz 52648a077faf32ba3b2fe60d78a302651e0dfc18ec6c925292067b346e819bd4 1036812 exim4-base_4.80-7+deb7u1_i386.deb 056c30eba74b4a8b300d1395353a1d09f719d87e8c6105256070bf1545ae6715 209818 eximon4_4.80-7+deb7u1_i386.deb 1a3d75ad4059480dbc02602b865bfab535aed1e3956dc4809dd40d3f980f0ba5 628286 exim4-daemon-light_4.80-7+deb7u1_i386.deb 7b5bb5542b06d2e6a36742df70378b01c7b5c3f5e4e6b87e01b8910203c90bbe 685932 exim4-daemon-heavy_4.80-7+deb7u1_i386.deb d8a5ee8373d63673f65ad4ee2d4aecdc6de60c35ae89bfaf19b9d22f1e481da5 1201832 exim4-daemon-light-dbg_4.80-7+deb7u1_i386.deb 4b1542aa375a757b672aa37315dc4debfd6573e89a20c5ffe7fb4b98e06127b7 1348458 exim4-daemon-heavy-dbg_4.80-7+deb7u1_i386.deb fa5abe3dfc91913306bdd90ffe222f86897c5529186b85922ff825d50890dbd6 440318 exim4-dbg_4.80-7+deb7u1_i386.deb ddc1361c553544fdf99cfc5cdcf967548efb542898e08542e63bc74272e5862e 173972 exim4-dev_4.80-7+deb7u1_i386.deb daa7e4e901b255b47d65ce58c8720e9977d56047a68578a26d1b01721c2c618f 477752 exim4-config_4.80-7+deb7u1_all.deb a21bce77925578638fe2c8507d6917aeabf2c6453bf5675eb721e91f208e02a8 7808 exim4_4.80-7+deb7u1_all.deb Files: a4e28b95f3fd2f0d15712d2f4eae2ae8 2803 mail standard exim4_4.80-7+deb7u1.dsc e5d33490b42b2823fcbee739fb3ef712 581920 mail standard exim4_4.80-7+deb7u1.debian.tar.gz e1f4635618c87b5a6662bea579562607 1036812 mail standard exim4-base_4.80-7+deb7u1_i386.deb c23fdbcd9fa120cea0d7d0c45cc5e2c8 209818 mail optional eximon4_4.80-7+deb7u1_i386.deb 1c73d5e56e98f0748cef3da03795d2e6 628286 mail standard exim4-daemon-light_4.80-7+deb7u1_i386.deb 927ddade8ab9b154375b76aaf9be7e00 685932 mail optional exim4-daemon-heavy_4.80-7+deb7u1_i386.deb 019e63e92b529d9fac152c0ba66dfe00 1201832 debug extra exim4-daemon-light-dbg_4.80-7+deb7u1_i386.deb c7db00196c99244abb5e7eb8841e7a81 1348458 debug extra exim4-daemon-heavy-dbg_4.80-7+deb7u1_i386.deb 500ceb05077ff29971ae8f70c2342046 440318 debug extra exim4-dbg_4.80-7+deb7u1_i386.deb f83aac78108fb5fa3f8992be6bed8eaa 173972 mail extra exim4-dev_4.80-7+deb7u1_i386.deb b60181a8a077997edd53f15a55ab0c08 477752 mail standard exim4-config_4.80-7+deb7u1_all.deb 3eef4af8eb5a87f498380e72ae362459 7808 mail standard exim4_4.80-7+deb7u1_all.deb -BEGIN PGP SIGNATURE---
Accepted gnutls28 3.3.8-6+deb8u1 (source i386 all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 27 Apr 2015 19:38:26 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27 Architecture: source i386 all Version: 3.3.8-6+deb8u1 Distribution: jessie Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-deb0-28 - GNU TLS library - main runtime library libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls28-dbg - GNU TLS library - debugger symbols libgnutls28-dev - GNU TLS library - development files libgnutlsxx28 - GNU TLS library - C++ runtime library Closes: 782776 Changes: gnutls28 (3.3.8-6+deb8u1) jessie; urgency=medium . * Reupload 3.3.8-7 unchanged for first point release: 45_eliminated-double-free.diff 46_Better-fix-for-the-double-free.diff: Pull two patches from upstream to a use-after-free flaw in gnutls_x509_ext_import_crl_dist_points(). CVE-2015-3308 Closes: #782776 Checksums-Sha1: 9f7bb3f63597a5d563dea30899cd8c24daff6710 2941 gnutls28_3.3.8-6+deb8u1.dsc 40a46a3babc277c1f62e43624fd290ab63e5bebf 90332 gnutls28_3.3.8-6+deb8u1.debian.tar.xz 5467e34c2749258e9a74da950a986c74e86b1d65 680974 libgnutls28-dev_3.3.8-6+deb8u1_i386.deb 2f64b1f64f552e9175260c5800bffa67d0774103 708626 libgnutls-deb0-28_3.3.8-6+deb8u1_i386.deb 9d460ce54bb4c4a866ff49f1ebcbc42f56f27b16 1915988 libgnutls28-dbg_3.3.8-6+deb8u1_i386.deb ec218c8571b7f7bb28e8e227119e613081a3092d 309756 gnutls-bin_3.3.8-6+deb8u1_i386.deb 7576528013259188414685f59eaacad1f7c2044c 3620614 gnutls-doc_3.3.8-6+deb8u1_all.deb 78519c605e9602ba88c27b74661f82b0856a2d22 175344 guile-gnutls_3.3.8-6+deb8u1_i386.deb 24efe9ac6c0f810f325367e25fb4b0c6f349484e 15426 libgnutlsxx28_3.3.8-6+deb8u1_i386.deb e78cf6abdfb7d3e1f8fa0d0c8db3b7173b22d187 142870 libgnutls-openssl27_3.3.8-6+deb8u1_i386.deb Checksums-Sha256: 6a80bcbd586254f31607b9ad59e47ad320f286b6e573446a92430be9ceeacf26 2941 gnutls28_3.3.8-6+deb8u1.dsc 2d71ec37eb28701e27d356ccdd4d1c0cd7f1670710b351c032bf0622fc48e0ab 90332 gnutls28_3.3.8-6+deb8u1.debian.tar.xz d0e339fa606ed601444161e9ceb5af4ecc1b8a97a606778dfc7313aa5be5dcd6 680974 libgnutls28-dev_3.3.8-6+deb8u1_i386.deb feffa155510c500446b56aa40c7f479c62a0cc8e868d9e911b40ca5175a48df5 708626 libgnutls-deb0-28_3.3.8-6+deb8u1_i386.deb 894ae0ff2acaa77d36f9b13a171c865daf97bca4acd07663e9a2cfc19629b268 1915988 libgnutls28-dbg_3.3.8-6+deb8u1_i386.deb e9619c1c2136a895338fd1debd77ea6f4bae33528cda33499354ff0900df2f89 309756 gnutls-bin_3.3.8-6+deb8u1_i386.deb faa80dac23af5dd9cd012775ef44529bef2389d12f5b460c56f443348783f65e 3620614 gnutls-doc_3.3.8-6+deb8u1_all.deb 4c02bf6daf6221cfb27a0d61fe8731abb9500e244db875567ab5b27315faec15 175344 guile-gnutls_3.3.8-6+deb8u1_i386.deb 1910cb83b0dd80f4294193c1caadd49501db3bb28c5bbed2565173a75565faa9 15426 libgnutlsxx28_3.3.8-6+deb8u1_i386.deb bc9e2e975e0e1e746d85229e7ce143b479ec27db188af4f35a933dfb5d2f3012 142870 libgnutls-openssl27_3.3.8-6+deb8u1_i386.deb Files: 6a513fd1492d68111d2bea50d64b54bf 2941 libs optional gnutls28_3.3.8-6+deb8u1.dsc 160c6aae89777b3c8750e83ec58b8d2c 90332 libs optional gnutls28_3.3.8-6+deb8u1.debian.tar.xz 98f66c96e7ec1106439b1255be75ce6c 680974 libdevel optional libgnutls28-dev_3.3.8-6+deb8u1_i386.deb 55f574504b2ff5033ecfa818b8d22b1e 708626 libs standard libgnutls-deb0-28_3.3.8-6+deb8u1_i386.deb 5ccbdae6098685820942ccf33bed3bb0 1915988 debug extra libgnutls28-dbg_3.3.8-6+deb8u1_i386.deb 1ecc3ae68705a5fe2f86f743c97018f8 309756 net optional gnutls-bin_3.3.8-6+deb8u1_i386.deb 88fae49eecc4ce176d71e27ef07e5d87 3620614 doc optional gnutls-doc_3.3.8-6+deb8u1_all.deb 217619a3f9842280a701821bdf8371c1 175344 lisp optional guile-gnutls_3.3.8-6+deb8u1_i386.deb 0b248dd3c20f3955a37e4a7135e72d41 15426 libs extra libgnutlsxx28_3.3.8-6+deb8u1_i386.deb eef97b4956904e41418fe290b3f3021e 142870 libs standard libgnutls-openssl27_3.3.8-6+deb8u1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVQQxDAAoJEKVPAYVDghSEif4QAJIPqG81tHODGrh66xNXFGCY Q+/hHZHPhyKjUt2Dd0E6PMd0YM1imdK5wqcYYRnihiLKw+A1xI9X/Zj6x0szVfJs GfYaNPRCJbB2HQ4BVVKfRLXxlaop51p9GABykMfw+hZZAN6OX/OP4GiTxoi6nKgx 9Bqay4ogcMdDbAWnJQkVM83wm/6/65EFfuPsodxl+lwoIPYo3KCsE/6RU/Zw//Mm L5dgrQvS3/nspjWybZpsJNCsebU1MVbXkMQ/uzYtPYje6iB53QZZPhFiGRRtXX1O udCVv1+zhMhiTNQqNFO7hkh9lrKu2tztFQq3aZL3TuADocuk4B8FC6Bun1J+68t6 STFYKqkTreUvlkQmiTc3nKTZreBm/rRB9+opSK+bAGafnlW/E+mVlHTTFNJtdEe0 hg9FwTHV/J4AquPsjnDhBX64Pq4JuXHIneUpTfyjYLmTUcCdjoSm/zzAFphegTlE OmpEb2h6FJBjwJZFlx2jCgcCe7WU2RVhJ1sWiXQLsYAcfhzwAkYC0zJ2kweYvBQo N7+8t7nCE2FfQ9suxVi7+4A1ESwNCisr4SU24Ux27JQzKrsPWylsl7/uWFGnlH5A sQBVzAhVwzZQ7Vrfvvuwu8D0+U529rYH6SE9utl/3ZST4WrCwqUEUwxvnEiq67ZZ x5k4sJUakDfFlOu0gclW =YNk+ -END PGP SIGNATURE
Accepted lynx-cur 2.8.9dev1-2+deb8u1 (source all i386) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 05 Jun 2015 13:30:14 +0200 Source: lynx-cur Binary: lynx-cur lynx-cur-wrapper lynx Architecture: source all i386 Version: 2.8.9dev1-2+deb8u1 Distribution: jessie Urgency: medium Maintainer: Atsuhito KOHDA Changed-By: Andreas Metzler Description: lynx - Text-mode WWW Browser (transitional package) lynx-cur - Text-mode WWW Browser with NLS support (development version) lynx-cur-wrapper - Wrapper for lynx-cur (transitional package) Closes: 784430 Changes: lynx-cur (2.8.9dev1-2+deb8u1) jessie; urgency=medium . * gnutls_set_default_priority.diff: Use gnutls_set_default_priority() instead of a custom priority string. The fix for the GnuTLS issue GNUTLS-SA-2015-2 combined with a buggy GnuTLS priority string in lynx breaks lynx SSL support. Preemptively apply the fix to lynx before the GnuTLS issue is fixed in stable. Closes: #784430 Checksums-Sha1: ee84f6fb33a7985eac2b78d0dff8a2a5d5532fb1 1984 lynx-cur_2.8.9dev1-2+deb8u1.dsc 2c971825b84b1d229d0930ce6d196173d4804520 34082 lynx-cur_2.8.9dev1-2+deb8u1.diff.gz 128e231750e12dfe5c1aac9d0e4bceac6e24d5b8 231156 lynx-cur-wrapper_2.8.9dev1-2+deb8u1_all.deb 5c3a4d9dbf36c929de82a33ccfc22701367eba7a 231570 lynx_2.8.9dev1-2+deb8u1_all.deb f2cb8f58d073c44f0633e11f6de84ddd41343000 1640934 lynx-cur_2.8.9dev1-2+deb8u1_i386.deb Checksums-Sha256: 7f4b47263fdb3744dac8e7c9190d68350732a0b4f016463e55472959740f97c7 1984 lynx-cur_2.8.9dev1-2+deb8u1.dsc 9ca24bfc438f5df595b798442880f60c173c67636e718408d4cc4545676aa4b6 34082 lynx-cur_2.8.9dev1-2+deb8u1.diff.gz dd666d07176881f45b4955dbcdb652196bda182a59b5f3e021055cc8af6ff716 231156 lynx-cur-wrapper_2.8.9dev1-2+deb8u1_all.deb 04092926478145fd1726498205c9229a12c905d2f52021af6cadb6a28c61bdaf 231570 lynx_2.8.9dev1-2+deb8u1_all.deb 6d0fcc6d3dcb0af978d76d94b81b07b40c83dfb2c1e482de0cd31133aebf1c1c 1640934 lynx-cur_2.8.9dev1-2+deb8u1_i386.deb Files: c50933616be2807a98c0d0b17890c446 1984 web extra lynx-cur_2.8.9dev1-2+deb8u1.dsc 3231c2c47eb4bcb49abfb79a12118ff8 34082 web extra lynx-cur_2.8.9dev1-2+deb8u1.diff.gz 868585652eec604fced3d6b70fd859fb 231156 oldlibs extra lynx-cur-wrapper_2.8.9dev1-2+deb8u1_all.deb 14eb1c632fcdadb53178de952b5fcfcf 231570 oldlibs extra lynx_2.8.9dev1-2+deb8u1_all.deb 3e65350c91ee21535172d199b8ecf53b 1640934 web extra lynx-cur_2.8.9dev1-2+deb8u1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVhESAAAoJEKVPAYVDghSE2TEP/3WyEtYLU1EfPtDrkvhSoKrd TNlvZ00mHsageVD4mCbg2xc1bZtkZPVkJvCNB0KwoZTs049sQfCGwbUZA0lpgi/a N1VSsuuevu03vg/tjISRzGZEabsPLQdgMvR/uuR/WzHvsJdjc3eS24nFSvCm4J7g stPUEYnRj2pL99z0TASOjzB1pyI1oVgqs4Y/+y1dHCwhMGmUwTrMGT/E3NNB7h14 yrOIh4fgDlwnHPJPJjQgA/3EWUXp3qXkzFUHuzeaQvDnX1d1Mgq1qZAByzLoYCkb JML6YfX4+ijE5xMtMlZXSMf4ly9f8v8zjdcdl+ilI3xGXwTVfktOXKj2bnmmuHei kC4m9nlmbEpSI/56l5nFFxTvWPB55JwPON8Qv+FTcPtyFasIPxnZT/0rBnPn3rb1 /WwUekTtHQBXtlUmTr1rqJ122IdvC4clQGxNZhQJKyqM53514aiXkJF1ClFYORG+ JOqgId4lNqEh95YapRhpzN3T58APdh8nWNibvpr2TNVn2rHvwMNDN2irdeKSSNhi /NnKEPKguisHl9zyEaUwdWLW9bTHVKh17sBUIzaR2aMkDnOAtf2nd1kxutE0rAF2 0mZN5ya5TTrNz/ojs4Rm8H33NdskGgl/gMj8S5aQJWjCXOqhFxeu75Zu2r7dq4wZ 4hodITlosUttdNPALV44 =Wu/9 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1z6gxl-jf...@franck.debian.org
Accepted gnutls28 3.3.8-6+deb8u3 (all source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 14 Aug 2015 18:28:30 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27 Architecture: all source Version: 3.3.8-6+deb8u3 Distribution: jessie Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Closes: 788704 Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls28-dbg - GNU TLS library - debugger symbols libgnutls28-dev - GNU TLS library - development files libgnutls-deb0-28 - GNU TLS library - main runtime library libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.3.8-6+deb8u3) jessie; urgency=medium . * Pull 50_Handle-zero-length-plaintext-for-VIA-PadLock-functio.patch from upstream version 3.3.12 to fix a crash in VIA PadLock asm. (Thanks, Peter Lebbing). Closes: #788704 * Pull 51_0001__gnutls_session_sign_algo_enabled-do-not-consider-an.patch 51_0002_before-falling-back-to-SHA1-as-signature-algorithm-i.patch 51_0003_tests-added-reproducer-for-the-MD5-acceptance-issue.patch (the latter unfuzzed) from GnuTLS 3.3.15 to fix GNUTLS-SA-2015-2. - A ServerKeyExchange signature sent by the server was not verified to be in the acceptable by the client set of algorithms. That had the effect of allowing MD5 signatures (which are disabled by default) in the ServerKeyExchange message. Checksums-Sha1: 3c40d629052a6ae6030b7cd0b1fb1ffa56f35c9e 2941 gnutls28_3.3.8-6+deb8u3.dsc 2e4b9aba3af221807bf33eb87bf0085c4959d980 95104 gnutls28_3.3.8-6+deb8u3.debian.tar.xz ce72f27c1d0cbd51668d2b87e4d762efbb77e5a3 3626674 gnutls-doc_3.3.8-6+deb8u3_all.deb Checksums-Sha256: 5c1cd78b2eb4547377ef5c0894de48945265251dbdca2303526cef894e77e46d 2941 gnutls28_3.3.8-6+deb8u3.dsc fe56f1f7a79b855577a5539202408e91a5a7a57095751550d983368cc0c08f8d 95104 gnutls28_3.3.8-6+deb8u3.debian.tar.xz 4237df1548470db035c271b47a2897b3915d4e39e3cd430e89e1c5f1037dc38a 3626674 gnutls-doc_3.3.8-6+deb8u3_all.deb Files: 8ad07147cab2bc286141c0ffe3fbb85d 2941 libs optional gnutls28_3.3.8-6+deb8u3.dsc 0e8fbda2f8b264a4eb0c8cf9c809466a 95104 libs optional gnutls28_3.3.8-6+deb8u3.debian.tar.xz aca4e24bb39775418512e8e20aa3295d 3626674 doc optional gnutls-doc_3.3.8-6+deb8u3_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVz0YIAAoJEKVPAYVDghSELZ0QAIU849YPi7KmShrfHQXtwn8u BHniyHxYFJVXiY/NzOi0++o46mNmvB8eoYXV3oxIIbFa2hVlEnGmZCUmTblDdFMf oI0OiK2fZSfnILoYN+Zhrx4y0ZeO3J7ZGb/b2SUc5KyYv34n6Oj12TCH8O1ZL4tm 6D7syrTrG86uXWr20kgfScLq0Vrm/gyKkopuJ35UjkVK5/Yz4G9LusyP0XbB/U6q dFaJhUYw65hpggNJscPJOiFn07akaGM8nmzCBLDU9Iq2UgEIeSwlBwv4HMnFbqJ1 Wl4C+m8JqOpAgH0SiWXc40CeLg/6JVQTz8CNSOpkn1dopTK8SdzF5jL3yGZpZ38B GkXddtZaOFF8AnDe+ztmj5WiYiWLCMGkZkTJAQWc4qfM93s6vvtI1uyPy666iHeR 19YfM2wgEfXqJaaYzydbDmliGLrVRjajzHIWSVNHz2I85tWb8nrkjKDjO8Vv0DcZ jGd9/bZ66VTR+nceSa+2iVb2BNYBkhgGv7cGeQsAkWHxjPwUGFxB7iZ0lZngRqsM UysdAF0Yp7W8ed8aeI7m7SpBigtHroHYWdwow1xDK0tegXlFjN5N5h+IoDWwuCSk dA5+mn3FVsotWHi0NGgIKuuLlz1JoQnRBubL7mDR3sC/hZbjvQBkh38ZrP4EWq+B zxH1gH4si0Nle1neN7jv =HsqL -END PGP SIGNATURE-
Accepted exim4 4.84-8+deb8u1 (source i386 all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 26 Oct 2015 17:42:16 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev Architecture: source i386 all Version: 4.84-8+deb8u1 Distribution: jessie Urgency: medium Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon exim4-dbg - debugging symbols for the Exim MTA (utilities) exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Closes: 803562 Changes: exim4 (4.84-8+deb8u1) jessie; urgency=medium . * Pull 85_Fix-crash-in-mime-acl-when-a-parameter-is-unterminat.patch and 86_Avoid-crash-with-badly-terminated-non-recognised-mim.patch from upstream GIT to fixup more MIME ACL related crashes. (Thanks, Lutz Preßler) Closes: #803562 Checksums-Sha1: f2ee56926d7ae4a56fc36e7c3ac91fd2bea7160c 2799 exim4_4.84-8+deb8u1.dsc e125c9777f45a2abe3be010d241d3527ce92adbd 416444 exim4_4.84-8+deb8u1.debian.tar.xz c3fdb3352679d7b6ff03afae0b23a5e1451941a0 1046972 exim4-base_4.84-8+deb8u1_i386.deb 495799d25aa27f515e3b6334b8f1ecc73ce55306 217134 eximon4_4.84-8+deb8u1_i386.deb 83f814f6f46b67e9f379471dfa36267cbb3b4e95 629956 exim4-daemon-light_4.84-8+deb8u1_i386.deb ab76d3ce673f7825655edc018e4bf5873d37adb6 680494 exim4-daemon-heavy_4.84-8+deb8u1_i386.deb 53c3d3b8591de95c0a5eb0d1cf0503e26a1ad6bc 767770 exim4-daemon-light-dbg_4.84-8+deb8u1_i386.deb f1e7576141390faa6ad75f71ada1ba9b40a5a634 848728 exim4-daemon-heavy-dbg_4.84-8+deb8u1_i386.deb 7a5d2ea0f9c407fd3de3bc29da12719c5aabaa8c 337320 exim4-dbg_4.84-8+deb8u1_i386.deb 3b0add0eebfd5d2a792055e1e7a8f9a97402188b 185132 exim4-dev_4.84-8+deb8u1_i386.deb bd41239652d088bfd59b4e58a8902182ba1c65b8 499852 exim4-config_4.84-8+deb8u1_all.deb 7db84cab39c92817b0a69aa926f4d8d33dc8dc85 8566 exim4_4.84-8+deb8u1_all.deb Checksums-Sha256: c29f763d2a789dfdc5ee0bea7a404a97e7055bc18ebb67a6b310a5fc840bbe5f 2799 exim4_4.84-8+deb8u1.dsc c0fc8ac57392dd3cfe9cff969c05daced825a13b62bc75d5eab61951ad301403 416444 exim4_4.84-8+deb8u1.debian.tar.xz ca34c1843733dcbafc4e584f5a76d57dd14dad00448f40126a2d8435e9f50b86 1046972 exim4-base_4.84-8+deb8u1_i386.deb 827a19004722fe80a4fd1136ddcf86f7300038ba5e0b7b4d24e9a70b0276514f 217134 eximon4_4.84-8+deb8u1_i386.deb b486106573084c443547b2cc74a737f30d2c760eb74d7975519e161f64dba4a8 629956 exim4-daemon-light_4.84-8+deb8u1_i386.deb 314cdcd02faa886acd5009d798b46dcd96289b6b088f29dea4eba8cc38d1cc42 680494 exim4-daemon-heavy_4.84-8+deb8u1_i386.deb 8247b459744942e95111458d608fea4110c260cffb3f54d6176d6d944824dee6 767770 exim4-daemon-light-dbg_4.84-8+deb8u1_i386.deb 8949363263dc8c5449d173b6f1f7448b3f881adfb29b83a3ccb131079e6063a6 848728 exim4-daemon-heavy-dbg_4.84-8+deb8u1_i386.deb 015afd409ead5d61c0900215efbcfdf361739ff16b148ae42b567e9ce709f9f3 337320 exim4-dbg_4.84-8+deb8u1_i386.deb 1c62a3269a47a97629a9bb55fdf77ab37d0b8ec159cc5b56ec3922cf5a29b456 185132 exim4-dev_4.84-8+deb8u1_i386.deb 898b726fb925493bea26d9c9ece6e73e6c381378eb50137113cd5075c370c9c1 499852 exim4-config_4.84-8+deb8u1_all.deb b11d0c168bdac31b674f01251816a156322e9e4e1205fe0e409393edee4397d3 8566 exim4_4.84-8+deb8u1_all.deb Files: 115c698c644a8d2997990a18d766bc56 2799 mail standard exim4_4.84-8+deb8u1.dsc 650caa5f75a5f3c349141b6fec8baec3 416444 mail standard exim4_4.84-8+deb8u1.debian.tar.xz 580944ff0bd80e80b9be643f5bd86a61 1046972 mail standard exim4-base_4.84-8+deb8u1_i386.deb 33985fb4588f77860a197dc235733044 217134 mail optional eximon4_4.84-8+deb8u1_i386.deb 36ab137a4d33e947d481b536f8fcc717 629956 mail standard exim4-daemon-light_4.84-8+deb8u1_i386.deb 831fcd4f8015ac2f432b3dd208d7518a 680494 mail optional exim4-daemon-heavy_4.84-8+deb8u1_i386.deb b2211ad4f524095dadb02506ebbe0c7e 767770 debug extra exim4-daemon-light-dbg_4.84-8+deb8u1_i386.deb 84da61df5678fe0831bbac7bf05bc499 848728 debug extra exim4-daemon-heavy-dbg_4.84-8+deb8u1_i386.deb 0d76cec7e5937053d160285dfed92922 337320 debug extra exim4-dbg_4.84-8+deb8u1_i386.deb 09c40f0d5e2844f5b7ca882795cb837b 185132 mail extra exim4-dev_4.84-8+deb8u1_i386.deb e7375e20df1e8875ed42de1c1c7df8cf 499852 mail standard exim4-config_4.84-8+deb8u1_all.deb 18cdd5ca538e21304405c646f41c2141 8566 mail standard exim4_4.84-8+deb8u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWNMMzAAoJEKVPAYVDghSESN0QAItp
Accepted exim4 4.84-8+deb8u2 (all source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 21 Nov 2015 11:24:46 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev Architecture: all source Version: 4.84-8+deb8u2 Distribution: jessie Urgency: medium Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Closes: 805576 Description: exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-dbg - debugging symbols for the Exim MTA (utilities) exim4-dev - header files for the Exim MTA (v4) packages exim4 - metapackage to ease Exim MTA (v4) installation eximon4- monitor application for the Exim MTA (v4) (X11 interface) Changes: exim4 (4.84-8+deb8u2) jessie; urgency=medium . * 87_Fix-transport-results-pipe-for-multiple-recipients-c.patch: Pull and unfuzz bd21a78 from upstream GIT, to fix a bug causing duplicate deliveries especially on TLS connections. Closes: #805576 Checksums-Sha1: 7a62edeb0c13f02223e94dd07f903cf8b6275cc3 2799 exim4_4.84-8+deb8u2.dsc 1fa08f8a6ad5ad4a6134256773055186f0a4e180 419912 exim4_4.84-8+deb8u2.debian.tar.xz 13e8d46f03a5f9223366b4390bd13d6851fedaba 499912 exim4-config_4.84-8+deb8u2_all.deb 44065266d8167213ae82f452bbf93d9b89acaef3 8566 exim4_4.84-8+deb8u2_all.deb Checksums-Sha256: 1a957952dec5517aa9e7df4109acbc8ce310bd7c00af840de04caaf3396b0c84 2799 exim4_4.84-8+deb8u2.dsc 8a418d59b0e9a187296a58226345beedd3f36533c0677fcd76f107f427a86bfe 419912 exim4_4.84-8+deb8u2.debian.tar.xz c1d54009e1500f1665f1848ba85a6dd6e16fb4d1d22cdb62737cb7860bb154e9 499912 exim4-config_4.84-8+deb8u2_all.deb fc2e09f0abbeb5f2e7c86f3514bd78acd372d735fb0e48b2c54076499a0f0b75 8566 exim4_4.84-8+deb8u2_all.deb Files: 5b35b7c430cedbddc58e3eaafa0c60b5 2799 mail standard exim4_4.84-8+deb8u2.dsc d6136c85eabc52d302c43f09dcda5c8a 419912 mail standard exim4_4.84-8+deb8u2.debian.tar.xz 77a02a5fba57d723d111d94733b304f3 499912 mail standard exim4-config_4.84-8+deb8u2_all.deb ac6fb48a442ee855a5a5ee1d93a71a75 8566 mail standard exim4_4.84-8+deb8u2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWUGB5AAoJEKVPAYVDghSEjAgP/3/Pg15THPMfum5JMPRiy7UY 1JtCAsKukNkWOqUcFcBy7CHMd62FrW9vnGluNU1gzEIxJR/TWBPChWyVnlmo6V2m zut0VELe8luJeePa65CDq1bjadgDeJWV3J3rgXL2nfcYNnRszxXIglj63MFabbNl +osK6kpocOmPhrpjqJ7cGOaeYk+vwYokPI4gp7GkDF+bvfIlJIYKgC2ufxcFvnZH KUt4G4r6NV9vFQ87KgXm57qvYpOsMCyfPm4j2OstwYE56hmRjyNQo6KakL/CMS8o STnwMTaeTcQaLnvNb7k5PYQ9OPNHLky26aeFqPMiOYaW+gHechmDo8y7/JMayoXn LX/uj6sBYicbm6/n0eQWH+gN6dKa2gtvmVRqUtF+O6vostsQUziQQ9Ktgl5VEugd oRCv3zjURI8alZTx58wMN3WmJprhcgaiyFA7yfVroIs6N2A4E0pKjoBF62N0peJC 2z9FJ8QPCa83ZP61guCP/gWtb1etBzf8G44AIoYxyeX38jGBA8T9w3l6RBDNjCFG jSJWdFD+KCjzFlpCXN93O7bOAC90LMI7NLyIXX0bgYGwD+9CJIIGR9/wgNgK7QIw tlw9lXmOeqJnsTcD1vUlUz8SHMjwGX/ZCWV/F60hzC0r5wPAJxHUIGlnFSKN8Iff MZSnqp3HgPYsTmcvJznm =cnAp -END PGP SIGNATURE-
Accepted exim4 4.80-7+deb7u2 (source amd64 all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 12 Mar 2016 13:34:16 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy exim4-daemon-custom eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-daemon-custom-dbg exim4-dev Architecture: source amd64 all Version: 4.80-7+deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-custom - custom Exim MTA (v4) daemon with locally set features exim4-daemon-custom-dbg - debugging symbols for the Exim MTA (v4) packages exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon exim4-dbg - debugging symbols for the Exim MTA (utilities) exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Changes: exim4 (4.80-7+deb7u2) wheezy-security; urgency=high . * 88_CVE-2016-1531.diff: + Fix CVE-2016-1531, a local privilege escalation issue when perl_startup is used. + New options keep_environment/add_environment which are empty by default, i.e. any subprocesses start in a clean (empty) environment. + -C requires an absolute path. + Exim changes it's working directory to / right after startup. * Add macros MAIN_KEEP_ENVIRONMENT and MAIN_ADD_ENVIRONMENT to set the new options. Set "keep_environment =" by default to avoid a runtime warning. Bump exim4-config Breaks to exim4-daemon-* (<< 4.80-7+deb7u2). * 89_01_only_warn_on_nonempty_environment.diff, 89_02_Store-the-initial-working-directory.diff: Upstream followups on the CVE fix (Thanks, Heiko Schlittermann!): + Runtime warning is only generated if (and only if) keep_environment is unset and environment is nonempty. + Store the initial working directory and make it available in the new expansion variable $initial_cwd. * Add NEWS entry to warn of potential breakage. Checksums-Sha1: fcb333a87b9f80d77470b776f035f183eee864eb 2803 exim4_4.80-7+deb7u2.dsc ba9b78b9dfab48f45409ab7c1c94ad085347899d 1649827 exim4_4.80.orig.tar.bz2 79fa90069fa46087df66ea64f6e6232ca625927a 593330 exim4_4.80-7+deb7u2.debian.tar.gz ed469594caf331c6c7b1ae1c22b8b144e2670eee 1041686 exim4-base_4.80-7+deb7u2_amd64.deb 61643953ddca2d96958f8eeaf105b0f504ac8921 212268 eximon4_4.80-7+deb7u2_amd64.deb 9af19b33f70d1655e8320e2eacbb8981abe3291f 656586 exim4-daemon-light_4.80-7+deb7u2_amd64.deb 3b962492dd6d23dc80fc2143588b56f0bac5ed38 716598 exim4-daemon-heavy_4.80-7+deb7u2_amd64.deb 40e44481a193088973500c4a8a4037006ce6376c 1249082 exim4-daemon-light-dbg_4.80-7+deb7u2_amd64.deb e6d1be8cc4bbf18acc6d53b2982e7368782a2fe4 1400658 exim4-daemon-heavy-dbg_4.80-7+deb7u2_amd64.deb 1ad62d63351656108b0cf21dd3d81e5c73dfabb0 451762 exim4-dbg_4.80-7+deb7u2_amd64.deb 4433a9c5ed2ea1e48a1de084021951426fd36cbc 174528 exim4-dev_4.80-7+deb7u2_amd64.deb 9c86cbdcde3d914c9ad27a397830a5e3126f7e0e 478804 exim4-config_4.80-7+deb7u2_all.deb 62ddecc447bffe929ee874ad94cd8c17ab423e28 7788 exim4_4.80-7+deb7u2_all.deb Checksums-Sha256: 9f6882283366ba52790cb8cee7d6e766df537fe00fbd6c47d3dd9c78612b0590 2803 exim4_4.80-7+deb7u2.dsc 787b6defd37fa75311737bcfc42e9e2b2cc62c5d027eed35bb7d800b2d9a0984 1649827 exim4_4.80.orig.tar.bz2 8a07cb3c49ab242b1ffc499fa7d445991fae0950d1b753bc7cda83d5b4271f1d 593330 exim4_4.80-7+deb7u2.debian.tar.gz 9302c2b8c6c6b71a75c4345ea10f564902465198e049fd562989f3882ecdc26c 1041686 exim4-base_4.80-7+deb7u2_amd64.deb 95892f6538bbd9aa6e72e03acad152824bcb42e0872e6f7c09f647f32e51d9d9 212268 eximon4_4.80-7+deb7u2_amd64.deb 8a62fce43174e3553b21924c5de917405700a7edf81c993f03aad5232713d435 656586 exim4-daemon-light_4.80-7+deb7u2_amd64.deb dc15359f45680831722e44bf208ddd6f9bb0e1d271b7cee3d132da7b70edab97 716598 exim4-daemon-heavy_4.80-7+deb7u2_amd64.deb fb48cc2a79444500fa5dcceb1cba2c1559283eeddde3f31502808be71e20f233 1249082 exim4-daemon-light-dbg_4.80-7+deb7u2_amd64.deb 54a8f21581a9870b656e4bb364b2988d52b52a97e3227608b21e2ea534bf9726 1400658 exim4-daemon-heavy-dbg_4.80-7+deb7u2_amd64.deb ee62e5c607d67a0756afec10aa03abcbf63f577e708bbfd2fcab0d3933548bea 451762 exim4-dbg_4.80-7+deb7u2_amd64.deb d5e8a946e78f1a6e30321535915bd27c41fff33029d5d4337c8a6e483652e6f2 174528 exim4-dev_4.80-7+deb7u2_amd64.deb 0ad964f1895a8549aeb018c86ff64f50e579fb409419d84158f8b3036acc0121 478804 exim4-config_4.80-7+deb7u2_all.deb 2727ce25b703fd5e5dca9cf8c30f694845b8a69138d6a4b0c1018d1dbc14408
Accepted exim4 4.84.2-1 (source amd64 all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 12 Mar 2016 08:17:40 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev Architecture: source amd64 all Version: 4.84.2-1 Distribution: jessie-security Urgency: high Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon exim4-dbg - debugging symbols for the Exim MTA (utilities) exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Changes: exim4 (4.84.2-1) jessie-security; urgency=high . * New upstream security release. + Fix CVE-2016-1531, a local privilege escalation issue when perl_startup is used. + New options keep_environment/add_environment which are empty by default, i.e. any subprocesses start in a clean (empty) environment. + -C requires an absolute path. + Exim changes it's working directory to / right after startup. * Add macros MAIN_KEEP_ENVIRONMENT and MAIN_ADD_ENVIRONMENT to set the new options. Set "keep_environment =" by default to avoid a runtime warning. Bump exim4-config Breaks to exim4-daemon-* (<< 4.84.2). * 89_01_only_warn_on_nonempty_environment.diff, 89_02_Store-the-initial-working-directory.diff: Upstream followups on the CVE fix (Thanks, Heiko Schlittermann!): + Runtime warning is only generated if (and only if) keep_environment is unset and environment is nonempty. + Store the initial working directory and make it available in the new expansion variable $initial_cwd. * Add NEWS entry to warn of potential breakage. Checksums-Sha1: fecdea5723ed93e1dd4b3447b499f20f0fbaad22 2785 exim4_4.84.2-1.dsc a5c3c684a16e65e401cf70fb051a61007ea3db4e 1745970 exim4_4.84.2.orig.tar.bz2 d5c80e91d58c43da1cb7eb0facf7024cef7f391f 422272 exim4_4.84.2-1.debian.tar.xz d52f7426d10c51dfb0d863761c47c79261e7d22f 1048472 exim4-base_4.84.2-1_amd64.deb e013ea2164b8c0fc63fc600abee846cee6036beb 216662 eximon4_4.84.2-1_amd64.deb 9faa5b3fe8a21a10058351a981395313b1ea8311 630380 exim4-daemon-light_4.84.2-1_amd64.deb c64926975979b4a90d8ceae618fd2e6292b01ffa 679184 exim4-daemon-heavy_4.84.2-1_amd64.deb e0e966e70cdb47f3866269a1ba372efa4272 807266 exim4-daemon-light-dbg_4.84.2-1_amd64.deb 097526f2d0655c5d16ab7a46509cd5d1a55e1fba 901728 exim4-daemon-heavy-dbg_4.84.2-1_amd64.deb c92c77a2ffb21ac1e5568da81ec6e708dbb8d807 337224 exim4-dbg_4.84.2-1_amd64.deb 01c3e77299b1327f450e258a1d90e1da1fcc041f 185758 exim4-dev_4.84.2-1_amd64.deb 4223cad50e0b96974a0c72ee18150015229697a6 501248 exim4-config_4.84.2-1_all.deb 0ac26ecbbdc9dcb661b76b25e6b053077383cf90 8530 exim4_4.84.2-1_all.deb Checksums-Sha256: c0f4c2b8c004747a7174082a35d402da04446af88190574872b96773929690cb 2785 exim4_4.84.2-1.dsc eb082aedf9349a29e25120e53f9e67a7ca6c4a6dad579c1425da1e131599bf52 1745970 exim4_4.84.2.orig.tar.bz2 de0ebb7564e25c9ef30396528aaa977aa8f7ca7b60bc46995cd991fa19ec4913 422272 exim4_4.84.2-1.debian.tar.xz d494d56c5a2044fe50bdbb03caee6dc4eeddd671be6f3b056ec97ff8a65a2b43 1048472 exim4-base_4.84.2-1_amd64.deb 8c50c5bbd28680cfd322a9f87fd4fd8f281c622381de0c4ba990805fc6667b8a 216662 eximon4_4.84.2-1_amd64.deb ffad494523263437b67f654a310b1c2576ebe67e39dedf0ab97b4901cd6d5213 630380 exim4-daemon-light_4.84.2-1_amd64.deb 01fff4934ce820bf3764094c7e0291da5e26611ab44a723d83eea7bc5b76ebe3 679184 exim4-daemon-heavy_4.84.2-1_amd64.deb 158879a0395e5a60745f195b83884eb6d5382e2ba8b3ee2c0a5044022b7f27a5 807266 exim4-daemon-light-dbg_4.84.2-1_amd64.deb eb4c2f6a4cba302389a9f53f6f4b99826c7132265fcbd9d437c20a95587d4494 901728 exim4-daemon-heavy-dbg_4.84.2-1_amd64.deb 881a0944b4e40cd0e699c27d96c6f61f9418bae72a255b256d44bfbf9ced66b3 337224 exim4-dbg_4.84.2-1_amd64.deb d56f6099b2c7e3c3dc68d6d45c2068bcd743bb8039ecf9aa134d2249d8fc3ee3 185758 exim4-dev_4.84.2-1_amd64.deb 412a30aaec786d4103be209aec5ff3680ed13dbbb4f18003af829a271fbee43f 501248 exim4-config_4.84.2-1_all.deb 8e9b5c4f076e4e8d75e02331cefa872420b4c0f177f5374c014433292bf8ba31 8530 exim4_4.84.2-1_all.deb Files: 7f8d401b0b589de873330e95447501f4 2785 mail standard exim4_4.84.2-1.dsc 3c3ff9edbc82c8ffe7a4cfff23f6d904 1745970 mail standard exim4_4.84.2.orig.tar.bz2 406ee619a3720630c1ee51cc7bad5102 422272 mail standard exim4_4.84.2-1.debian.tar.xz cb398e06e8df41602ec64c554c4de472 1048472 mai
Accepted exim4 4.84.2-2 (all source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sun, 12 Jun 2016 13:56:30 +0200
Source: exim4
Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy
eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev
Architecture: all source
Version: 4.84.2-2
Distribution: jessie
Urgency: medium
Maintainer: Exim4 Maintainers
Changed-By: Andreas Metzler
Closes: 812585 818349 818897 826646
Description:
exim4-base - support files for all Exim MTA (v4) packages
exim4-config - configuration for the Exim MTA (v4)
exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon
exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including
exiscan-ac
exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon
exim4-daemon-light - lightweight Exim MTA (v4) daemon
exim4-dbg - debugging symbols for the Exim MTA (utilities)
exim4-dev - header files for the Exim MTA (v4) packages
exim4 - metapackage to ease Exim MTA (v4) installation
eximon4- monitor application for the Exim MTA (v4) (X11 interface)
Changes:
exim4 (4.84.2-2) jessie; urgency=medium
.
* 90_Cutthrough-Fix-bug-with-dot-only-line.patch: JH/38 Fix cutthrough bug
with body lines having a single dot. The dot was incorrectly not doubled
on cutthrough transmission, hence seen as a body-termination at the
receiving system - resulting in truncated mails. Commonly the sender saw
a TCP-level error, and retransmitted the nessage via the normal
store-and-forward channel. This could result in duplicates received - but
deduplicating mailstores were liable to retain only the initial truncated
version.
* 91_Expansions-Fix-crash-in-crypteq-On-OpenBSD-a-bad-sec.patch: Fix crash
on "exim -be '${if crypteq{xxx}{\$aaa}{yes}{no}}'". Closes: #812585
* Improve on NEWS file. Closes: #818349
* Add 89_01_p_Delay-chdir-until-we-opened-the-main-config.patch. Backport
3de973a29de6852d61ba9bf1845835d08ca5a5ab (Delay chdir(/) until we opened
the main config) to actually make $initial_cwd expansion work. Also unfuzz
89_02_Store-the-initial-working-directory.diff.
(Thanks, Серж ИвановЪ for bugreport and pointer to missing patch) Closes:
#818897, #826646
Checksums-Sha1:
3c5b3934753eb80b1906742a24c5fa613cd136c5 2785 exim4_4.84.2-2.dsc
34a4ca9cd780dcdb6d7e1d1ae67f799b6b1d3c99 424560 exim4_4.84.2-2.debian.tar.xz
11e67c6960c1fa1f6ba86d1ef9b8233bffe72927 501990 exim4-config_4.84.2-2_all.deb
c47f7fe6f2aa53960b2f01961b2e645c6ce4c236 8540 exim4_4.84.2-2_all.deb
Checksums-Sha256:
2e940338b051dba7a1245de512cd223ad74edc1268c8ff0d1689460c5eea8d9c 2785
exim4_4.84.2-2.dsc
18283c59b23af7047ebbca79603fd361cc3899ea6f9df11c8c84956836af9d8d 424560
exim4_4.84.2-2.debian.tar.xz
a9668b07cdabf20c670271a075a4c05aa03a6dcb452ebd5bc8f94084c52f75e8 501990
exim4-config_4.84.2-2_all.deb
c5f5ea9aec9dd293741e3c01dd7574c0fe5d96898e8542172dc65888d71fc8b2 8540
exim4_4.84.2-2_all.deb
Files:
77f6e98315ce3fb7c797ec4a751ed601 2785 mail standard exim4_4.84.2-2.dsc
354bc9f7a373acd2b2282b8ab5fed0fc 424560 mail standard
exim4_4.84.2-2.debian.tar.xz
eaee7cdfffd5eaecdb3591d8026f2d3c 501990 mail standard
exim4-config_4.84.2-2_all.deb
6e4bdae0f83b8685a4aa4f2e2fbbc986 8540 mail standard exim4_4.84.2-2_all.deb
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQIcBAEBCgAGBQJXYtUvAAoJEKVPAYVDghSEuu8QAIyUAv1nsx+u7hJoyDGZ8Abg
Tf/4i56SaVFFXO7HOUazFjxnJ9cc6xRMyCKllFILwUGB1X4R+hGclCNuiIFIeXkq
xO3tK1Gi3BavNE442s7xIWarCfsIjjwLd9Q6nNPzX617g4kxMs4iqE59dD6GQSmH
FymBr3nXQA9/DU9SHMChmbnR6u3ovLHjbnzoSjeSVh4lo6D8bjzvs+yHHKM+pb3S
0bYtZ3nNFconOAB+plhgehWj6Df1xnqYJG/cK7jExOWuvVXqFKqSdiScGXCLmlI7
d9CUURtVFzuXgJCArbF5Ujt6rnEKhpRxhsVRkFLpJAtL3fjrqnxbTH+Ju5Rpxgdg
Y57CSg8xtk2FX9P1Y/SBGWOI8IDlN4+h8LxmZHgyPW6htQEN/AhGX9ImIEVpGXcb
78cwMaAwJ7CX8nXBEvaCREYihO2gegpC62SQ4a/PZ0N1T5AgYl0S2dgmLF7B1Mwj
HAZSsP9BizxvmTVYqERh2Xy5ulNYgZlmK0MQMzw47TdzUEAyMQSHzV2ZqeSTG0Im
Ca6K7l9h2dc2qNDo4L5cXinq9I+07WURgGzqhll6vZVF0XIqCVWD515SRGZcsV/e
8Ly+DlaH0NpZiI8XxioMynpkovKCLQDiIaK1PHKLedCXFBKpR42ws30pU01PnVqj
Kld4O8c8D7elNgauqPza
=DYYV
-END PGP SIGNATURE-
Accepted gnutls28 3.3.8-6+deb8u4 (source amd64 all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 30 Oct 2016 07:39:08 +0100 Source: gnutls28 Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27 Architecture: source amd64 all Version: 3.3.8-6+deb8u4 Distribution: jessie Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-deb0-28 - GNU TLS library - main runtime library libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls28-dbg - GNU TLS library - debugger symbols libgnutls28-dev - GNU TLS library - development files libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.3.8-6+deb8u4) jessie; urgency=medium . [ Salvatore Bonaccorso ] * CVE-2016-7444: Incorrect certificate validation when using OCSP responses (GNUTLS-SA-2016-3). See #840191. . [ Andreas Metzler ] * Cherry pick 53_nettle-use-rsa_-_key_prepare-on-key-import.patch from upstream GIT, which should allow gnutls continue to work with CVE-2016-6489-patched nettle. See #832983. Checksums-Sha1: b73902aadd6ff6e72abfbf406430906e1872f2be 2923 gnutls28_3.3.8-6+deb8u4.dsc 007fda65008c85d6aa50ecb0f49badecba29638e 96652 gnutls28_3.3.8-6+deb8u4.debian.tar.xz fd377ce6835977b59515aa1ec8a71d54c138aa2e 637822 libgnutls28-dev_3.3.8-6+deb8u4_amd64.deb c744892a613020b2ed4b3351567152fc0381562c 694786 libgnutls-deb0-28_3.3.8-6+deb8u4_amd64.deb 7986560f4efc10719ddc27b16b4b5cdef528cde0 2388094 libgnutls28-dbg_3.3.8-6+deb8u4_amd64.deb 675e66ebed08b442731bfb679bfb4f391115b34d 307960 gnutls-bin_3.3.8-6+deb8u4_amd64.deb ae034c37f8b10d520d60099fa1515deaa8f78232 3627348 gnutls-doc_3.3.8-6+deb8u4_all.deb 71d95fd0e75249caea94e18ecbebd53f52a64717 175620 guile-gnutls_3.3.8-6+deb8u4_amd64.deb a5bb4ee548c50dc99e8915cdd9cd19dea8ada384 14606 libgnutlsxx28_3.3.8-6+deb8u4_amd64.deb 9ee50d8c2d2d50bc96da8a51456ad1d3e774f9ac 142684 libgnutls-openssl27_3.3.8-6+deb8u4_amd64.deb Checksums-Sha256: 90fb209fc1579d99b95be81df2a5fc7add9e5aa989f00f93805177d4e440620f 2923 gnutls28_3.3.8-6+deb8u4.dsc a7e794a7ccf9133f00db2eeebe1d89a2e76f85bf31e2ab9ebe9108989c1ffeae 96652 gnutls28_3.3.8-6+deb8u4.debian.tar.xz ff9dd94b55790cd7aa2384f6b86534c53dd2fcc3169e2f3ff232827e4158231c 637822 libgnutls28-dev_3.3.8-6+deb8u4_amd64.deb fbe15f6bdc0b8dfd03912a89be0f1171e1676778a7fc43c0989c7a3e1fad1800 694786 libgnutls-deb0-28_3.3.8-6+deb8u4_amd64.deb 7bedd2127703a3708fb27a59c430cee1f09dd9e756d0d157f9c9b42c6b5180e3 2388094 libgnutls28-dbg_3.3.8-6+deb8u4_amd64.deb 495faf2998d0275906ded43035277bdcc6d26b6e9975db1f9029e5bd939ea97f 307960 gnutls-bin_3.3.8-6+deb8u4_amd64.deb fe4f802f560952d25745296e1c58c5e3990feab0e47ca69b3e1980aeb66e7ec3 3627348 gnutls-doc_3.3.8-6+deb8u4_all.deb a5a771225523703610d502d027948027964f914ba59a9b7e0ef995d9d2969de4 175620 guile-gnutls_3.3.8-6+deb8u4_amd64.deb 7389b47bc2d6a65a561952963913aa65f258b37b2c49691904af8cac933d742a 14606 libgnutlsxx28_3.3.8-6+deb8u4_amd64.deb f62ed460175cefa4e8ea19c26cf0dcef2587680b73d0349e27e25602930bbee2 142684 libgnutls-openssl27_3.3.8-6+deb8u4_amd64.deb Files: 593fb0cb9b0ba400cc2877e8e599 2923 libs optional gnutls28_3.3.8-6+deb8u4.dsc d4948ab6a77c188771d93eee465f2e5c 96652 libs optional gnutls28_3.3.8-6+deb8u4.debian.tar.xz f19dc8f3e2b63231db563f852fc3ee8f 637822 libdevel optional libgnutls28-dev_3.3.8-6+deb8u4_amd64.deb ae7aafd718f44934ffa48a8c38212d76 694786 libs standard libgnutls-deb0-28_3.3.8-6+deb8u4_amd64.deb 60ee3da7b809733e46a78dba6948ed84 2388094 debug extra libgnutls28-dbg_3.3.8-6+deb8u4_amd64.deb e198633abf9aae3053bb38c071a9a9a9 307960 net optional gnutls-bin_3.3.8-6+deb8u4_amd64.deb 60ed978b7bdf757dfb16d49585606fe0 3627348 doc optional gnutls-doc_3.3.8-6+deb8u4_all.deb 38cf61c65ed0d2291fa269a30027d67b 175620 lisp optional guile-gnutls_3.3.8-6+deb8u4_amd64.deb d517ff12be254a3ca670158c50f5f2ac 14606 libs extra libgnutlsxx28_3.3.8-6+deb8u4_amd64.deb 0fdbf44df05e862008d94b213dfe4413 142684 libs standard libgnutls-openssl27_3.3.8-6+deb8u4_amd64.deb -BEGIN PGP SIGNATURE- iQIcBAEBCgAGBQJYGHMFAAoJEKVPAYVDghSEfZsP/RaAHdNwS21v2Sw8+KFe0Mr9 kepqjmyQHE19WyYfJX4Key+l7OucM54UO2tso0HCJPfMYZkjcJJUM0B/D64vHNdK zcXCwBlI7HM6lCozEWJaxd+wf8hpMkoScUGTqs9g+EWEw2SFuLYCDCSM2WgZGTg6 9yAAiXd6hyctUMq6oMnEUKQjeKiXrGmN9hAvGlCUAQNkTGOdqkueMyd/z67BOZiL aiS/CntEgYYFbnRlUYtib4ekLi9DZMXXTdGLO5/YXj4YYPtXVrtU8w8MgdE9SYsV izvZYlu+zmu9fnDDNQmc0sQuQGM9qyxyddGi/n2i0giLqi5VVZQ6os05WszO7Hi5 Dupm6Zka0m0bPfUX2ur03LOytvjbqsKvy0Z5nGvXmSsZrk75G3gJgSiDnlUFufuX Uu5nPktMgayRwVwjPdxadexDINM4ShKi/IkwGnpw+wIrCCidpa0iSLQHPAkoqMUW b0lieZvMvHlBqtnixnkseM9A9Zsdznz4Ib+Vioa/wSaFaLSkC3Pw07uAIY51l3Oo kQIDCt8xSNG+72+4562EaZS8+ODVlzBqfwVeeAbEBN6Tb2YoBrIT92Jd80FX/mtt 3ic
Accepted exim4 4.84.2-2+deb8u3 (source amd64 all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 02 Jan 2017 19:18:05 +0100 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev Architecture: source amd64 all Version: 4.84.2-2+deb8u3 Distribution: jessie Urgency: medium Maintainer: Exim4 Maintainers Changed-By: Andreas Metzler Description: exim4 - metapackage to ease Exim MTA (v4) installation exim4-base - support files for all Exim MTA (v4) packages exim4-config - configuration for the Exim MTA (v4) exim4-daemon-heavy - Exim MTA (v4) daemon with extended features, including exiscan-ac exim4-daemon-heavy-dbg - debugging symbols for the Exim MTA "heavy" daemon exim4-daemon-light - lightweight Exim MTA (v4) daemon exim4-daemon-light-dbg - debugging symbols for the Exim MTA "light" daemon exim4-dbg - debugging symbols for the Exim MTA (utilities) exim4-dev - header files for the Exim MTA (v4) packages eximon4- monitor application for the Exim MTA (v4) (X11 interface) Closes: 845569 Changes: exim4 (4.84.2-2+deb8u3) jessie; urgency=medium . * 94_Fix-memory-leak-on-Gnu-TLS-close.patch from upstream exim-4_84_2+fixes branch: Fix GnuTLS memory leak. (Thanks, Heiko Schlittermann!) Closes: #845569 Checksums-Sha1: c6cf6996bda6cb1c30f227d012c07ce97d1e1f89 2827 exim4_4.84.2-2+deb8u3.dsc 32d4ed0bd1b1bbcb81fa8577611f8372eb12e64d 426060 exim4_4.84.2-2+deb8u3.debian.tar.xz 46f404972d64a96dd0170048829483dcd0023268 1049248 exim4-base_4.84.2-2+deb8u3_amd64.deb 0088cebe826446ad027448cbbfa4e4c713d153fb 217522 eximon4_4.84.2-2+deb8u3_amd64.deb 15d283ac5f88ed4927029607f39c57886d126323 631096 exim4-daemon-light_4.84.2-2+deb8u3_amd64.deb 71a958de4c86e72c1e48669fa85170aadf9a756e 680216 exim4-daemon-heavy_4.84.2-2+deb8u3_amd64.deb 4321743307a012cf2ad8bc9d9b9ff7db02c8 808304 exim4-daemon-light-dbg_4.84.2-2+deb8u3_amd64.deb 93ed43525d479d202ed18b7615295f47c74947e4 902862 exim4-daemon-heavy-dbg_4.84.2-2+deb8u3_amd64.deb 19e435cd7b7c97f4a4ebbe9964686bd376bc5b0d 338124 exim4-dbg_4.84.2-2+deb8u3_amd64.deb 092b0528a7c09234b482a860ae7e1b79a5b93a42 186594 exim4-dev_4.84.2-2+deb8u3_amd64.deb 278ca50254dcca89144e6a715ba905118c498079 502226 exim4-config_4.84.2-2+deb8u3_all.deb 1527d6af3bb270f85ced8e6d8311b15ddf84ae63 8538 exim4_4.84.2-2+deb8u3_all.deb Checksums-Sha256: 3d4e03e2bbca5967d197d19ac28c1225d1d7a94536cf02b1eccdded9cc038aae 2827 exim4_4.84.2-2+deb8u3.dsc c11af3e1c77172c7c95a10ec48bf19ebad9e0c542be7ff43ec96c3c2b79763a4 426060 exim4_4.84.2-2+deb8u3.debian.tar.xz c5b92bffe5c6253b003ab996b9081f6bf1e5ab361358fa9755a01487d71eee27 1049248 exim4-base_4.84.2-2+deb8u3_amd64.deb 94efb2706f2d735580f68608462e4b7fabc0d00d599a4d3d7f94b11affbeefc3 217522 eximon4_4.84.2-2+deb8u3_amd64.deb da55afe5b4fbdfe0b835340104a3e84509c1548d67733aad1a254e4bcaa26f93 631096 exim4-daemon-light_4.84.2-2+deb8u3_amd64.deb 02c530c4b48be22773988803e8c5e0304298c683d12094dab25ba5397dcbdab7 680216 exim4-daemon-heavy_4.84.2-2+deb8u3_amd64.deb 5696d202f2a4eeb2a44b1a0225798bf682fcd3649e210b319c609a3a4490cc6a 808304 exim4-daemon-light-dbg_4.84.2-2+deb8u3_amd64.deb bb7b3b94c678422e6af6da1302629f641962692da6e6abe5bc7902208adf4e35 902862 exim4-daemon-heavy-dbg_4.84.2-2+deb8u3_amd64.deb 35ce2485a271758dcd2cec70d0f313c73cb03108f5aa08cb9e7fed05fda44d4b 338124 exim4-dbg_4.84.2-2+deb8u3_amd64.deb 0d248f14a647ea92829efc83f17dd10cc1b44b3174438b218c191064017a5930 186594 exim4-dev_4.84.2-2+deb8u3_amd64.deb 4f36f657bbf2062cbb6138099230df930774788be3c7a86ce8abe63a9fa1307e 502226 exim4-config_4.84.2-2+deb8u3_all.deb c89eb990558dfc7029f80b59ea7ca74a0263ae92b8c0f74a97a5b6c97358fefc 8538 exim4_4.84.2-2+deb8u3_all.deb Files: c304e39117c977a356f50e4415b1d0ba 2827 mail standard exim4_4.84.2-2+deb8u3.dsc 285c1b8d8ff771be9532700ab88f3ce1 426060 mail standard exim4_4.84.2-2+deb8u3.debian.tar.xz da44c30511ff49e742fda95760bdadda 1049248 mail standard exim4-base_4.84.2-2+deb8u3_amd64.deb 91cf3900409f4bccddb669a37133fec0 217522 mail optional eximon4_4.84.2-2+deb8u3_amd64.deb 5809668e2f5e5a9dc3c769a6065fb5df 631096 mail standard exim4-daemon-light_4.84.2-2+deb8u3_amd64.deb 243a78632c7eca97d24e65b981b828f4 680216 mail optional exim4-daemon-heavy_4.84.2-2+deb8u3_amd64.deb adc7be0d0fdff2ae058efd05eb210e7e 808304 debug extra exim4-daemon-light-dbg_4.84.2-2+deb8u3_amd64.deb b030fa4dec2163f40bc88433cd1e8b70 902862 debug extra exim4-daemon-heavy-dbg_4.84.2-2+deb8u3_amd64.deb 0df84d0f2d8eb3c6cfb032f68adb50f6 338124 debug extra exim4-dbg_4.84.2-2+deb8u3_amd64.deb 9130b2191a24472d83323687199f 186594 mail extra exim4-dev_4.84.2-2+deb8u3_amd64.deb bf62445648da2f0a9c1685a9bda18459 502226 mail standard exim4-config_4.84.2-2+deb8u3_all.deb 9e94979671e77acb2f93f4df2a7d3e11 8538 mail standard exim4_4.84.2-2+deb8u3_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAlhqn+s
Accepted gnutls28 3.3.8-6+deb8u5 (all source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 27 Apr 2017 18:10:51 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27 Architecture: all source Version: 3.3.8-6+deb8u5 Distribution: jessie Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls28-dbg - GNU TLS library - debugger symbols libgnutls28-dev - GNU TLS library - development files libgnutls-deb0-28 - GNU TLS library - main runtime library libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.3.8-6+deb8u5) jessie; urgency=medium . * Pull multiple fixes from gnutls_3_3_x branch: + 55_00_pkcs12-fixed-the-calculation-of-p_size.patch Fixed issue in PKCS#12 password encoding, which truncated passwords over 32-characters. Reported by Mario Klebsch. + 55_01_gnutls_x509_ext_import_proxy-fix-issue-reading-the-p.patch Fix double free in certificate information printing. If the PKIX extension proxy was set with a policy language set but no policy specified, that could lead to a double free. [GNUTLS-SA-2017-1] CVE-2017-5334 + 55_02_auth-rsa-eliminated-memory-leak-on-pkcs-1-formatting.patch Addressed memory leak in server side error path (issue found using oss-fuzz project) + 55_03_opencdk-Fixes-to-prevent-undefined-behavior-found-wi.patch 55_04_Do-not-infinite-loop-if-an-EOF-occurs-while-skipping.patch 55_05_Attempt-to-fix-a-leak-in-OpenPGP-cert-parsing.patch 55_06_Corrected-a-leak-in-OpenPGP-sub-packet-parsing.patch 55_07_opencdk-read_attribute-added-more-precise-checks-whe.patch 55_08_opencdk-cdk_pk_get_keyid-fix-stack-overflow.patch 55_09_opencdk-added-error-checking-in-the-stream-reading-f.patch 55_10_opencdk-improved-error-code-checking-in-the-stream-r.patch 55_11_opencdk-read-packet.c-corrected-typo-in-type-cast.patch Addressed memory leaks and an infinite loop in OpenPGP certificate parsing. Fixes by Alex Gaynor. (issues found using oss-fuzz project) Addressed invalid memory accesses in OpenPGP certificate parsing. (issues found using oss-fuzz project) [GNUTLS-SA-2017-2] CVE-2017-5335 / CVE-2017-5336 / CVE-2017-5337 + 55_12_gnutls_pkcs11_obj_list_import_url2-Always-return-an-.patch When returning success, but no elements, gnutls_pkcs11_obj_list_import_url4, could have returned zero number of elements with a pointer that was uninitialized. Ensure that an initialized (i.e., null in that case), pointer is always returned. + 55_13_cdk_pkt_read-enforce-packet-limits.patch Addressed integer overflow resulting to invalid memory write in OpenPGP certificate parsing. Issue found using oss-fuzz project: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=420 [GNUTLS-SA-2017-3A] CVE-2017-7869 + 55_14_opencdk-read_attribute-account-buffer-size.patch Addressed read of 1 byte past the end of buffer in OpenPGP certificate parsing. Issue found using oss-fuzz project: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=391 (This patch is from gnutls_3_5_x branch.) + 55_15_opencdk-do-not-parse-any-secret-keys-in-packet-when-.patch Addressed crashes in OpenPGP certificate parsing, related to private key parser. No longer allow OpenPGP certificates (public keys) to contain private key sub-packets. Issue found using oss-fuzz project: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=354 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=360 [GNUTLS-SA-2017-3B] + 55_16_Enforce-the-max-packet-length-for-OpenPGP-subpackets.patch Addressed large allocation in OpenPGP certificate parsing, that could lead in out-of-memory condition. Issue found using oss-fuzz project, and was fixed by Alex Gaynor: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392 [GNUTLS-SA-2017-3C] Checksums-Sha1: 4e8d1672d1a0b41d352bd5c91adb4e7dff63f192 2958 gnutls28_3.3.8-6+deb8u5.dsc ce6241850b3f6520b32ad15d4b398e4769fd2a95 104392 gnutls28_3.3.8-6+deb8u5.debian.tar.xz de484ee2bc2a1f11f523aa7cbd23700da6a57b12 3628304 gnutls-doc_3.3.8-6+deb8u5_all.deb Checksums-Sha256: 1143c5b76a6899ab266e1e33840d87026108c4623a2ae4c44d1f00a9643ef54d 2958 gnutls28_3.3.8-6+deb8u5.dsc fa47161ac81d77daaa7269e22f0edc037c356dc4386ba785ab201b681c1a9328 104392 gnutls28_3.3.8-6+deb8u5.debian.tar.xz f2ad5361e395e31832fae73a1d2e63d18b59d9847aae3fd894946c83e926275d 3628304 gnutls-doc_3.3.8-6+deb8u5_all.deb Files
Accepted gnutls28 3.3.8-6+deb8u6 (all source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Jun 2017 07:39:52 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27 Architecture: all source Version: 3.3.8-6+deb8u6 Distribution: jessie-security Urgency: high Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Closes: 864560 Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls28-dbg - GNU TLS library - debugger symbols libgnutls28-dev - GNU TLS library - development files libgnutls-deb0-28 - GNU TLS library - main runtime library libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.3.8-6+deb8u6) jessie-security; urgency=high . * 56_CVE-2017-7507_1-ext-status_request-ensure-response-IDs-are-pro.patch 56_CVE-2017-7507_2-ext-status_request-Removed-the-parsing-of-resp.patch 56_CVE-2017-7507_3-gnutls_ocsp_status_request_enable_client-docum.patch from upstream gnutls_3_3_x branch: Fix crash upon receiving well-formed status_request extension. GNUTLS-SA-2017-4/CVE-2017-7507 Closes: #864560 Checksums-Sha1: 82abb49280d87d109de7be93d501296eb757cf9e 2958 gnutls28_3.3.8-6+deb8u6.dsc cbae63155970ee2b85cabf9a7b36cc0ddc09929c 105968 gnutls28_3.3.8-6+deb8u6.debian.tar.xz 52a79bab603d13968b3e1af624bf269ac3961488 3628582 gnutls-doc_3.3.8-6+deb8u6_all.deb Checksums-Sha256: 109f05884b2ff5c50766749986603083ed56e11ff98a51cd6a102baf906a2bef 2958 gnutls28_3.3.8-6+deb8u6.dsc 67041552c37898eb50c009069ebad127b109bb035920918147b86b60dd7361f5 105968 gnutls28_3.3.8-6+deb8u6.debian.tar.xz 6e399d6e857ac77402257cd530302046d0c89b707c2ae0e5f518ce3ae5062983 3628582 gnutls-doc_3.3.8-6+deb8u6_all.deb Files: 3c5ce07f3e1fedaa33a87808ed1c181e 2958 libs optional gnutls28_3.3.8-6+deb8u6.dsc f4bb1e793efabf5381d75deb2ab5a925 105968 libs optional gnutls28_3.3.8-6+deb8u6.debian.tar.xz 2f15f305e797c91e592e5389f07d2a0b 3628582 doc optional gnutls-doc_3.3.8-6+deb8u6_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAllDcdkACgkQpU8BhUOC FIQigQ/+KMd4Mx4S13yn9Sv60Wx4WzLavZ21yAZLNdBr+Ydtn072S5Y6CoNtAc6R xeWPGYgokLH/BT8CMdzHeMl8yOFh1pS2H6P2mOQ+Q+TXzUeRztpY6v+I7tjU2t/1 J7XT9rN7eOzmikdJI6KDPxSxGmVz99HPwSuSoAZ2VFWXQ2jRj9I6JoYtdMbv68xb vKRVATq5vJ8jQOR10DcD8B5uY1cwcdELh+1cz6s3Eso1JGFPJsvycarcVzfVoYUw NY5LD/TPKbc6ld5Kiq5jxmVpDNzXTMNZ6nTnUtbGcq5g7IwG38REmetk/M5Nk0WX 1locR84oXwOp6CQBm1X0XS/RqIBr7sW1JRt8zir+ltw5zubAUU4EisNBBu6yq5ap Xg8QA0VVGHokOaOrzX8JIt/+uf8Bznyh/itgC54efXfQpcSUHDBWZqpPQWM51Ab+ Q9SBykbBGsTubeOQSgt/iHvSKAa5vGkPzs8w3xPKPkmFLGh8orxENtgPPMEBZVg0 IW+CVyYY9JlSGms9fsL0K0nO1zYdqV4o6i3yA2LFOiJe+G0XJMx7kj2wpb1bknlz f9+LbhsPI1aGtM4nJ6lGzsGU/isCxCLHJD2TKmGJ6OwGchjMe2ZOiSxDJWiV1uva jrfPpxyq+QWLzuDMVbNVzo2kkSFdRfWZOT0kvZfS2SG/GZjt240= =Co8b -END PGP SIGNATURE-
Accepted gnutls28 3.3.8-6+deb8u7 (all source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 24 Jun 2017 17:50:21 +0200 Source: gnutls28 Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27 Architecture: all source Version: 3.3.8-6+deb8u7 Distribution: jessie Urgency: medium Maintainer: Debian GnuTLS Maintainers Changed-By: Andreas Metzler Closes: 865297 Description: gnutls-bin - GNU TLS library - commandline utilities gnutls-doc - GNU TLS library - documentation and examples guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls28-dbg - GNU TLS library - debugger symbols libgnutls28-dev - GNU TLS library - development files libgnutls-deb0-28 - GNU TLS library - main runtime library libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutlsxx28 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.3.8-6+deb8u7) jessie; urgency=medium . * 57_urandom-use-st_ino-and-st_rdev-to-determine-device-u.patch from upstream gnutls_3_3_x branch: Improve check for /dev/urandom uniqueness. Ensure that when gnutls_global_init() is called for a second time that /dev/urandom is re-opened when the inode or device ID has changed. Closes: #865297 Checksums-Sha1: 4f2f4ae3ed4848df2cab7fa0e8778e190bfb4eea 2958 gnutls28_3.3.8-6+deb8u7.dsc 0a73d37a3cc86b493c15da214f416ff1d1ea6c0a 106372 gnutls28_3.3.8-6+deb8u7.debian.tar.xz a261205d12a8a6149f0b1ee946d7d5f064ee3df3 3628984 gnutls-doc_3.3.8-6+deb8u7_all.deb Checksums-Sha256: a5d18c2afd4eee5d05618eb146a81bf70e761527e828987bce23609f7612a7c5 2958 gnutls28_3.3.8-6+deb8u7.dsc f5bfa892ddf437ce3c8de5f55315689d03d3e484375c47599051b8f2bb4e0c07 106372 gnutls28_3.3.8-6+deb8u7.debian.tar.xz cac3e68fd0fd17d849abbaa8c547d8eb23dc8478373693beab8ae0cbefabd86b 3628984 gnutls-doc_3.3.8-6+deb8u7_all.deb Files: eb47202532db9460718f29567cebacb5 2958 libs optional gnutls28_3.3.8-6+deb8u7.dsc ac0f6649d16fd5397fc46366427c2431 106372 libs optional gnutls28_3.3.8-6+deb8u7.debian.tar.xz fbfbb86e1c806e9c87d5ff722360075c 3628984 doc optional gnutls-doc_3.3.8-6+deb8u7_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEE0uCSA5741Jbt9PpepU8BhUOCFIQFAllT5RgACgkQpU8BhUOC FISg5BAAo0ClxrXBksKNBnhEyEkSzKI2Tk46a+Q+CjMvb1NWSMEPvliRkxZc1KhS tUWdIr+4gx7zdkT4RbFjRtYw9qJaIR4FhdHvjNKX0X/T+vRo827Nbq7txCY6uYUA YSic1mc//9BnbuskubcXn046kKuJT18S5/pwUELk1PdWBNldDI8HqpgxePBDyfa2 YAwLL4YR8uhmdDrzBBK5UU4jUgpQVrk07hL5TXK6KPvo5kvBfu9Tg2eJ7q8pyI66 CqPSeRK1Kpgd+tl8xR+AEO6Y2P8P+uYLi1RH/zOKYfjiI+sXGWG5dW7FfHLAPk3j L0EyDHKqwQmULl7l5CJLaIzEgw3p35eD8TL1dudqRvPaJv+cnDpkeUobI1Dr89yV DGix+sj2s/rQQpPxeyaCySHzh2sLWjervQeLX6w63tObhWRDX82mGKmEzXT6AiyC J79SI4ZUn3MP0D6IGLhYy2UR/8k6rtWl6rmNdIo7uloOWiSIe833pk1vpypjVYUy 57781WUK6LWUivsqSHeUe/d3XKH7iNJSD625pQoIfVhO4roeqaYOZqQPJcKtTzxG N++wPPIztlcvqQfo0JnB2I3CsGALou5YDHS2QYXSrIiclnAI6UGilmhvKLG5RdL5 8pp4v6Ik8Ql8K1tnnzSDbjIl9U8Vqr1M4rLgX7QSrYU/HGDrEME= =UR80 -END PGP SIGNATURE-
