-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 10 Feb 2025 10:07:24 +0100
Source: gnutls28
Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym
Architecture: amd64
Version: 3.7.9-2+deb12u4
Distribution: bookworm-security
Urgency: medium
Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) <buildd_amd64-x86-ubc-01@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutlsxx30 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.7.9-2+deb12u4) bookworm-security; urgency=medium
 .
   *  libgnutls: Fix potential DoS in handling certificates with numerous
      name constraints, as a follow-up of CVE-2024-12133 in libtasn1.
      Patch cherry-picked from 3.8.9 release.
      [GNUTLS-SA-2025-02-07, CVSS: medium] [CVE-2024-12243]
Checksums-Sha1:
 1b247e7fabf4e681f5f96ce7467c4ff762921668 893812 gnutls-bin-dbgsym_3.7.9-2+deb12u4_amd64.deb
 922c05acb49952d525889cb1514db2c34e647f03 639520 gnutls-bin_3.7.9-2+deb12u4_amd64.deb
 b7ec810e3f2de024f365214678fcdcee609c2765 11267 gnutls28_3.7.9-2+deb12u4_amd64-buildd.buildinfo
 27b6573f7c6541bd52f7ec9fd4684cf3d7d3dd9c 258360 guile-gnutls-dbgsym_3.7.9-2+deb12u4_amd64.deb
 45ff9eda9ccca84fb9e743ff66cd4a075786eae4 462712 guile-gnutls_3.7.9-2+deb12u4_amd64.deb
 f12159012a4e1657afb53ff8a93394bb04093921 91968 libgnutls-dane0-dbgsym_3.7.9-2+deb12u4_amd64.deb
 ac617b84a9228fd060f99239911a365d4f06176b 406672 libgnutls-dane0_3.7.9-2+deb12u4_amd64.deb
 8b6ffc5c2c56c35fc36251723795d2c2cbac9e9b 92304 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u4_amd64.deb
 1ea838857b91317a74a5f805deb24d0fcd26a603 406548 libgnutls-openssl27_3.7.9-2+deb12u4_amd64.deb
 0d05ae9f70bd173bfb0845bc878043ad9802f277 1352544 libgnutls28-dev_3.7.9-2+deb12u4_amd64.deb
 b40aa35b533c449345e4975db40b04bc1bf72288 2114224 libgnutls30-dbgsym_3.7.9-2+deb12u4_amd64.deb
 50dad85633df48bac7bce28e50e3331623587fbd 1405152 libgnutls30_3.7.9-2+deb12u4_amd64.deb
 a22c57c5ee8853a11c341e16091e94031a42e1bd 49752 libgnutlsxx30-dbgsym_3.7.9-2+deb12u4_amd64.deb
 10ce36bd0e717d7e31ff7738b89a89d172566748 14404 libgnutlsxx30_3.7.9-2+deb12u4_amd64.deb
Checksums-Sha256:
 4e78e24472a3ed6c0f663e2e7c0ed2b699705926fa654a7ec48a18dbb42a7e4f 893812 gnutls-bin-dbgsym_3.7.9-2+deb12u4_amd64.deb
 0d0f2b2e00ff9edd538ea5777b2a3d67c374407bae5863bd33102199f7789576 639520 gnutls-bin_3.7.9-2+deb12u4_amd64.deb
 2c6b3b12fed52dcc0abec9c0ec98e34085b6ef5ae0fd4b7b038477c3e8ed6526 11267 gnutls28_3.7.9-2+deb12u4_amd64-buildd.buildinfo
 4345b642a4c5027d869dc94ed8935c5f3a58b2ae657cf9e1ae3ca606fbaa649d 258360 guile-gnutls-dbgsym_3.7.9-2+deb12u4_amd64.deb
 702363b68c11eb28a3c488d8d0d0d3ac36e10b64d959ee1848f3c77b6d80eefe 462712 guile-gnutls_3.7.9-2+deb12u4_amd64.deb
 dfe06ede611dbe17eea7a578d19b2dc3fc0fe38605074d73553c5dead3a6680f 91968 libgnutls-dane0-dbgsym_3.7.9-2+deb12u4_amd64.deb
 fdfa1887e966f964a527432c4e5c9934e95497ac3a786bc8a0e1974c8edb5fd4 406672 libgnutls-dane0_3.7.9-2+deb12u4_amd64.deb
 540006bc4d621beaa996c1944f802cc1371463c953ffb92c752041f59ed6febf 92304 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u4_amd64.deb
 b019f2c4391d4466b29748bd38a283ddc1bef9a13fc2b51a0b6a4565b2c22057 406548 libgnutls-openssl27_3.7.9-2+deb12u4_amd64.deb
 f6e0c2a1ff44efc842bb306971e4cd188ae7cee130fa57c5f7c4e231a6652dcb 1352544 libgnutls28-dev_3.7.9-2+deb12u4_amd64.deb
 2ab3babfe76df78003020db358a69b13049c646a421d2f50138065883602786a 2114224 libgnutls30-dbgsym_3.7.9-2+deb12u4_amd64.deb
 1c113d2a3eb06d66fc3a6f30d00e8c38b102e3b1d9f8911272bd0e45c22ed36b 1405152 libgnutls30_3.7.9-2+deb12u4_amd64.deb
 cd02ab1121a2168d22a965fa176d62778a50996c1569f80c78b6979645031a8a 49752 libgnutlsxx30-dbgsym_3.7.9-2+deb12u4_amd64.deb
 1044dbe46deba1ee4e62b833a430d996fdfb212acf7b10f0bca0380339c988b3 14404 libgnutlsxx30_3.7.9-2+deb12u4_amd64.deb
Files:
 7a424ddb1ec393ced6750310d88447dc 893812 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u4_amd64.deb
 bddcaac87362adaebf6736029ae17928 639520 net optional gnutls-bin_3.7.9-2+deb12u4_amd64.deb
 a1f011fde24f5b9bb67a6fda72bd9d29 11267 libs optional gnutls28_3.7.9-2+deb12u4_amd64-buildd.buildinfo
 5af1fd08cf35bca12be8abb07fff0d9a 258360 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u4_amd64.deb
 048dd0eca799805abba2f1c4f81a9e3f 462712 lisp optional guile-gnutls_3.7.9-2+deb12u4_amd64.deb
 4c51b125177215f227b9e36f751c02d9 91968 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u4_amd64.deb
 b0c63ca43b1da6bdc2495b36079cbb0e 406672 libs optional libgnutls-dane0_3.7.9-2+deb12u4_amd64.deb
 aa9233bdaca7e4dab826d6592fe388bf 92304 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u4_amd64.deb
 6e41aa04690f42bf1d053501f621e7e8 406548 libs optional libgnutls-openssl27_3.7.9-2+deb12u4_amd64.deb
 d003fea57b40afeb3bec8e7a460e2a44 1352544 libdevel optional libgnutls28-dev_3.7.9-2+deb12u4_amd64.deb
 7b435acc94e8769a62bb7c58ce39b319 2114224 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u4_amd64.deb
 5c463dd14d697e7be56c9da6b50b05fa 1405152 libs optional libgnutls30_3.7.9-2+deb12u4_amd64.deb
 d021ee006b3ba82e4c51b2aa7e844a7e 49752 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u4_amd64.deb
 fdc11a7e1df81e274e968abccc2c6e8d 14404 libs optional libgnutlsxx30_3.7.9-2+deb12u4_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE4Unr4QHS5Yi4rr9Q3KGKEAtjIVgFAmetAz8ACgkQ3KGKEAtj
IVjnzQ//fMdmldSvU+4i2V+Ihlj+lq28L0tw06QDinsE0GRUgPsoMfXOxV+brXbh
DzwXERbpKaYmLn1QO2w2kM0muni7eQX2i/GuLdsKcwV0Vt5mcVVXOTTTME/6wMOF
AJICsSnlw7gDtAVuVbCfi8v/64PjoDOtFu0WfHY2kr3OgRmQH9aOm45QAMipQArM
1cV/rSZJc6BGijpOe5hQRfuK868S68/PRnlixW8qGXQs9ZIyy7io+Ov0sr6nju4i
vUERKNaeeglDu0bltE675U/Xv2ng4IBgD2WukVyV1KAWxs98vp6A49aanaZXBEmG
T4zNax/px0UwNfcy2OgEptdKfgEfYGoXOvwcArGVuAi1eTCmtY1Si5J5L6Cx8E3D
m9xu3oVW8jjLWFuOXQuBYOaBcZIbPI4cBUwOtvLsPkDn/TB6ESMhNTXUly6wgqW8
mTpwX5BES1NQS6xEi2c1sCZudADOYCZftLAlR+2OKi1Q1LMD3fzkfYjr4dlrX3RI
c6cskrYQu2F16P2/rpKlLP8ryfB7Tl/Wt8jV+iPj/UGmCAxISAB2Zay4i5mqpSsS
Ky2drzN8Nn1tSv8csKm/tIx/lCZ+xExinIUdeF+3OMYKUHWIBdFXNqATMcg0SKi5
D9gf4ymcpBNpVUFCDuZ4P5Pd9tQUbqkAKw5X6UH7DQ4WnngEj6c=
=jysx
-----END PGP SIGNATURE-----