Accepted gnutls28 3.5.8-5+deb9u4 (source) into proposed-updates->stable-new, proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 06 Oct 2018 14:06:18 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls30 gnutls-bin gnutls-doc libgnutlsxx28 libgnutls-openssl27 libgnutls-dane0
Architecture: source
Version: 3.5.8-5+deb9u4
Distribution: stretch
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint@lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
gnutls-bin - GNU TLS library - commandline utilities
gnutls-doc - GNU TLS library - documentation and examples
libgnutls28-dev - GNU TLS library - development files
libgnutls30 - GNU TLS library - main runtime library
libgnutls-dane0 - GNU TLS library - DANE security support
libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
gnutls28 (3.5.8-5+deb9u4) stretch; urgency=medium
.
* Pull fixes for CVE-2018-10844 and CVE-2018-10845 from gnutls 3.5.19
+ 39_01-dummy_wait-correctly-account-the-length-field-in-SHA.patch
+ 39_02-dummy_wait-always-hash-the-same-amount-of-blocks-tha.patch
+ 39_03-cbc_mac_verify-require-minimum-padding-under-SSL3.0.patch
+ 39_04-hmac-sha384-and-sha256-ciphersuites-were-removed-fro.patch
+ 39_05-tests-pkcs12_encode-fix-test-for-SHA512.patch
Checksums-Sha1:
c4b76205d5334be929dc9063182b7b8f75a003bc 3286 gnutls28_3.5.8-5+deb9u4.dsc
1137bc261456bdf7f2ec84930a129017bb6b3fe4 111484 gnutls28_3.5.8-5+deb9u4.debian.tar.xz
Checksums-Sha256:
688284aba04d8ff84c6636d354c844c06e691031eb9a2fccc2e41547ed2fac9e 3286 gnutls28_3.5.8-5+deb9u4.dsc
9013debe7c67edcd8aff039ab250d294b61313e52f7bbbd212d68d0b4fcee187 111484 gnutls28_3.5.8-5+deb9u4.debian.tar.xz
Files:
b1163afe47bfa5923d0d73859300350c 3286 libs optional gnutls28_3.5.8-5+deb9u4.dsc
83b53f9068afcfa474127aae5baec636 111484 libs optional gnutls28_3.5.8-5+deb9u4.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=Dc0v
-----END PGP SIGNATURE-----