-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 10 Feb 2025 10:07:24 +0100 Source: gnutls28 Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym Architecture: i386 Version: 3.7.9-2+deb12u4 Distribution: bookworm-security Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: Andreas Metzler Description: gnutls-bin - GNU TLS library - commandline utilities guile-gnutls - GNU TLS library - GNU Guile bindings libgnutls-dane0 - GNU TLS library - DANE security support libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper libgnutls28-dev - GNU TLS library - development files libgnutls30 - GNU TLS library - main runtime library libgnutlsxx30 - GNU TLS library - C++ runtime library Changes: gnutls28 (3.7.9-2+deb12u4) bookworm-security; urgency=medium . * libgnutls: Fix potential DoS in handling certificates with numerous name constraints, as a follow-up of CVE-2024-12133 in libtasn1. Patch cherry-picked from 3.8.9 release. [GNUTLS-SA-2025-02-07, CVSS: medium] [CVE-2024-12243] Checksums-Sha1: 2a22d535693adf0145ab7875a8b1010d44b7513f 798080 gnutls-bin-dbgsym_3.7.9-2+deb12u4_i386.deb 8d50d4c9eda12d5735b99121561bb03d510b8c38 645476 gnutls-bin_3.7.9-2+deb12u4_i386.deb fe6840a0ba7a37d9672c9c1e69265e6b051704ee 11174 gnutls28_3.7.9-2+deb12u4_i386-buildd.buildinfo 311d0d420609e244fa6c5250b3cb3a6274bfbb57 241996 guile-gnutls-dbgsym_3.7.9-2+deb12u4_i386.deb 9037f9f15c49c16beaa13f21bbcc362637de7d8b 463560 guile-gnutls_3.7.9-2+deb12u4_i386.deb f92b6fb93e8aae114db9d6c030cdcd49a3d9961b 83916 libgnutls-dane0-dbgsym_3.7.9-2+deb12u4_i386.deb a5f63abcebd76a7679225e97f21333c228ae364c 406612 libgnutls-dane0_3.7.9-2+deb12u4_i386.deb df171157f884e6c29e6ac84896446a8e216d0dc1 83988 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u4_i386.deb 1daecd50780e5e31df0cfcc6352cdb140b630416 406832 libgnutls-openssl27_3.7.9-2+deb12u4_i386.deb 6899dbdd2492a45bf179a5ea61f3ad7ecb4ecf80 1418036 libgnutls28-dev_3.7.9-2+deb12u4_i386.deb 68461f106580ae33d4ad2679ba5246687fe9f5bf 1735736 libgnutls30-dbgsym_3.7.9-2+deb12u4_i386.deb 58a95bf9d6e1da2680c989ff4fa0b11808e0503f 1405784 libgnutls30_3.7.9-2+deb12u4_i386.deb c61ef0e292762dcff62c35685b955bb44a83a825 45444 libgnutlsxx30-dbgsym_3.7.9-2+deb12u4_i386.deb 6bb6c55a447cee2d672190f9332c63c3761f03af 15432 libgnutlsxx30_3.7.9-2+deb12u4_i386.deb Checksums-Sha256: bc8bc549555fff494e285b8bae73466cd990bcd773efde87278433b53a507273 798080 gnutls-bin-dbgsym_3.7.9-2+deb12u4_i386.deb 59f4dd8085ae177b8d6be66e6df34e40f1cd98098d7d7836669995dcc2f6e28c 645476 gnutls-bin_3.7.9-2+deb12u4_i386.deb 5294ea354fbc1fe00f7b65df117bc2bcb0d29eb8d0f1850aabd181a7c49c4f37 11174 gnutls28_3.7.9-2+deb12u4_i386-buildd.buildinfo f7bd931c6102342539c2ddcd58633562c0bcbac1f283018c2be6d65f8cd5bc0c 241996 guile-gnutls-dbgsym_3.7.9-2+deb12u4_i386.deb ae3673c545887fd2b5e0597ed06b6cf3c2304127f71d47121ea9ccc191734c9e 463560 guile-gnutls_3.7.9-2+deb12u4_i386.deb 570f4030004bd73599f6bdfb65ff183ea9a437b18ede4c14643ca0abe3f3cad4 83916 libgnutls-dane0-dbgsym_3.7.9-2+deb12u4_i386.deb 3120423ee5a9acf70d3385f467eb145c1a212d650ff6ca997eee5f975433460d 406612 libgnutls-dane0_3.7.9-2+deb12u4_i386.deb 5bdb6e61148f8f43f239ab95ffd22438312cf87de44f73623b0ef4a1cdf49d2b 83988 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u4_i386.deb 5dcc20af31fcb89dd22f3871e2c9bb6849d9cdf342872c8813ca967b36abcd7e 406832 libgnutls-openssl27_3.7.9-2+deb12u4_i386.deb 6762d3d38a9c56ea8186f7e4193dd51011653be815b593dc0973cda4fbda1568 1418036 libgnutls28-dev_3.7.9-2+deb12u4_i386.deb 08443ac33e4893fa6558a2df35aa2d42fef7855c0f3f66df9500c1a686fa69ff 1735736 libgnutls30-dbgsym_3.7.9-2+deb12u4_i386.deb 122fe7a6be77e13178fdd377f12b6a426be301ae0bc95a3f9d3609fa1f48b4d7 1405784 libgnutls30_3.7.9-2+deb12u4_i386.deb a75517f1480887c31192bd04616a3617b84dc0d16ba7f4d1ecb61e625fdb6539 45444 libgnutlsxx30-dbgsym_3.7.9-2+deb12u4_i386.deb aece54c1712cf27bddacda6d6060a1ab5fd21d63bae31be55d3f165448cd25d3 15432 libgnutlsxx30_3.7.9-2+deb12u4_i386.deb Files: 3fecd9749aed4b3bc145067d81a10fa7 798080 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u4_i386.deb 0b873ff4e245dca9b2585f770dfcd84e 645476 net optional gnutls-bin_3.7.9-2+deb12u4_i386.deb c85f2d8458918075c04672a8b13998d5 11174 libs optional gnutls28_3.7.9-2+deb12u4_i386-buildd.buildinfo e766dbbb52597572d0544d438db31988 241996 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u4_i386.deb 46438b94b6f902a3faec1d0ac6f3ac3c 463560 lisp optional guile-gnutls_3.7.9-2+deb12u4_i386.deb 150c86df451749d66d12989898a0a2d0 83916 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u4_i386.deb b1e04cf709286b6b14f1c233269799da 406612 libs optional libgnutls-dane0_3.7.9-2+deb12u4_i386.deb ddac3a652cc1bda7e814f992af0eb5e2 83988 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u4_i386.deb e0c875816d684fa475cb93557aa70b24 406832 libs optional libgnutls-openssl27_3.7.9-2+deb12u4_i386.deb 0afd88a741b9dce644eabfa01c54d50b 1418036 libdevel optional libgnutls28-dev_3.7.9-2+deb12u4_i386.deb 4531d6ec448626d46735ebeb76298fc7 1735736 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u4_i386.deb 69d7dae1f55c9615dab62865b24543fd 1405784 libs optional libgnutls30_3.7.9-2+deb12u4_i386.deb 22fe0ed5dcb6e0771bea1051c276909c 45444 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u4_i386.deb dce8fd9c6b9a09fc5978a39fdb21737d 15432 libs optional libgnutlsxx30_3.7.9-2+deb12u4_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErEDrIdpJkzFMm6K+PyQET5WCY90FAmetBF4ACgkQPyQET5WC Y93y1RAAirHm/5q18d4dfnUvLUPEjJQGY4fclWuzc6LBaN8wk+L0JveQsj0wDVtF tYRt0q2Tz8IMAwiIEeqymIw4Ni+UnggVylIVLZG4ZeBblCStQb5QBXIR676/HTjR SyziwgjM5+y+b9JGy2TMCJK7XXKZitfNRYQkvSUQBvNdsY+ELRIXZh8xT/qEc8yM cxK5abZ6kN1G5HDH6pSI/J45+ZjisGn0SiNBAuNB6JsmZDJnc/cZ3GXpVhdASbTB HyKLBCIAsXUjm01zRiwABjVD6SPR1MtjTOwHCYdx+ImflfbQzFcBaJ/wZ5xv7s9t 72uA7vHyEVUg455W+3fpo6rirADItdr81UfJJc5fq5GC2uBlZR758YnAer9JJ3p5 kR/QXM32GOBjfiL3QX4WUVuivGnyexnIYust8jOcUgYLM0zB+i2u9Nb52TAJhL65 NXN/uZm5lr+5DxYIequ/XQMp2y8P5qYbZoV54svWNjNsnmmwVzwAdJPnK1jbtXvp 39HgX2SOqeTLRtzv7xezUb2QK9TkyL1U+cf++YNdhmVNg/RNJJEhrnvCg9nHFBng k/yojyeK/gxlxNIEM9VkdIdMHRGvCUOvuR4TM7ORYUDW0F1Mj4jLe8+FeZgM6ymj x2Hx7oUllJEs7o1Cp4EP4WWzOE2l1lm1H2do9mckBSkZgRFZfrc= =+C0Y -----END PGP SIGNATURE-----