Accepted mbedtls 2.14.1-1 (source) into unstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 07 Dec 2018 10:24:44 +0000
Source: mbedtls
Binary: libmbedtls-dev libmbedcrypto3 libmbedtls12 libmbedx509-0 libmbedtls-doc
Architecture: source
Version: 2.14.1-1
Distribution: unstable
Urgency: high
Maintainer: James Cowgill <jcowgill@debian.org>
Changed-By: James Cowgill <jcowgill@debian.org>
Description:
libmbedcrypto3 - lightweight crypto and SSL/TLS library - crypto library
libmbedtls-dev - lightweight crypto and SSL/TLS library - development files
libmbedtls-doc - lightweight crypto and SSL/TLS library - documentation
libmbedtls12 - lightweight crypto and SSL/TLS library - tls library
libmbedx509-0 - lightweight crypto and SSL/TLS library - x509 certificate library
Closes: 915796
Changes:
mbedtls (2.14.1-1) unstable; urgency=high
.
* New upstream release.
- Fixes CVE-2018-19608 - Local timing attack on RSA decryption.
(Closes: #915796)
.
* d/libmbedcrypto3.symbols, d/libmbedx509-0.symbols:
- Add new symbols found in 2.14.1.
Checksums-Sha1:
33376cf2a00e2acd66bf05cd6f8d546607ea0af4 2341 mbedtls_2.14.1-1.dsc
7a5111221feead2e38a9a157893176fc817cf02e 1798696 mbedtls_2.14.1.orig.tar.xz
60ebec5f07bc5e652ce0ca658a31f46813fe6553 12512 mbedtls_2.14.1-1.debian.tar.xz
Checksums-Sha256:
f9f23d797afcad767503f945dde52a879a6e4e7088c2b2ede214d5594b0694a6 2341 mbedtls_2.14.1-1.dsc
81e6ac294b18d3b2e4c7d5d8b243e5202766ce0c8843ee3f593401dd5e9078dc 1798696 mbedtls_2.14.1.orig.tar.xz
3c4fd02a9867b488514aafe0699fd9cdb0f8aea7a866d536958daff3f029a1ab 12512 mbedtls_2.14.1-1.debian.tar.xz
Files:
25709b6054c60b5f7b0dd7495a9e2a3b 2341 libs optional mbedtls_2.14.1-1.dsc
fe995ad58793968fda5c96982320aedc 1798696 libs optional mbedtls_2.14.1.orig.tar.xz
9cae086e82f93350efcbee47c1280d8f 12512 libs optional mbedtls_2.14.1-1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=hocY
-----END PGP SIGNATURE-----