[ubuntu/bionic-proposed] gnutls28 3.5.17-1ubuntu1 (Accepted)
Julian Andres Klode
juliank at ubuntu.com
Mon Jan 22 12:46:15 UTC 2018
gnutls28 (3.5.17-1ubuntu1) bionic; urgency=low
* Merge from Debian unstable. Remaining changes:
- debian/patches/disable_global_init_override_test.patch: disable
failing test.
- debian/patches/add-openssl-test-link.patch: add link for libssl
* Build with --with-included-unistring for now as our libunistring is
too old and needs a transition.
gnutls28 (3.5.17-1) unstable; urgency=low
* New upstream version.
+ When verifying against a self signed certificate ignore issuer. That
is, ignore issuer when checking the issuer's parameters strength,
resolving issue #347 which caused self signed certificates to be
additionally marked as of insufficient security level.
Closes: #885127
gnutls28 (3.5.16-1) unstable; urgency=medium
* New upstream version.
+ Fixes interoperability issue with openssl when safe renegotiation was
used. Closes: #873055
* 35_modernize_gtkdoc.diff from upstream GIT master: Modernize gtk-doc
support. Update gtk-doc.make, m4/gtk-doc.m4 and doc/reference/Makefile.am
from gtk-doc git head (that is 1.26 +
c08cc78562c59082fc83b55b58747177510b7a70). Disable gtkdoc-check.
Closes: #876587
gnutls28 (3.5.15-2) unstable; urgency=medium
* Upload to unstable.
gnutls28 (3.5.15-1) experimental; urgency=medium
* New upstream version. Drop unneeded patches.
(31_arm64ilp32-unaccelerated.patch
35_record-added-sanity-checking-in-the-record-layer-ver.patch
36_parse_pem_cert_mem-fixed-issue-resulting-to-accessin.patch)
gnutls28 (3.5.14-3) unstable; urgency=low
* 35_record-added-sanity-checking-in-the-record-layer-ver.patch from
upstream gnutls_3_5_x branch: Prevent crash on calling gnutls_bye() on an
already terminated or deinitialized session. Closes: #867303
* 36_parse_pem_cert_mem-fixed-issue-resulting-to-accessin.patch from
upstream gnutls_3_5_x branch: parse_pem_cert_mem: fixed issue resulting
to accessing past the input data.
* 31_arm64ilp32-unaccelerated.patch by Wookey: Disable assembly
code on arm64ilp32 to fix FTBFS. Closes: #872454
* Use /usr/share/dpkg/pkg-info.mk instead of dpkg-parsechangelog, except for
the compatibility code for setting SOURCE_DATE_EPOCH with dpkg << 1.18.8.
* Standards-Version 4.0.1, update priorities (extra->optional).
gnutls28 (3.5.14-2) unstable; urgency=medium
* Upload to unstable.
gnutls28 (3.5.14-1) experimental; urgency=low
[ Dan Nicholson ]
* Build with --disable-rpath. Closes: #865674
[ Andreas Metzler ]
* New upstream version.
* Build against external libunistring.
gnutls28 (3.5.13-2) unstable; urgency=medium
* Upload to unstable, merge changelogs.
gnutls28 (3.5.13-1) experimental; urgency=low
* New upstream version.
+ Drop 35_test-corrected-typo-preventing-the-run-of-openpgp-te.patch.
+ Fixes GNUTLS-SA-2017-4/CVE-2017-7507 - Crash due to a null pointer
dereference. #864560
gnutls28 (3.5.12-2) experimental; urgency=medium
* 35_test-corrected-typo-preventing-the-run-of-openpgp-te.patch: Correct
typo preventing the run of openpgp test.
* Stop disabling heartbeat support. Closes: #861193
gnutls28 (3.5.12-1) experimental; urgency=medium
* New upstream version.
* Bump dep info on gnutls_session_ext_register.
gnutls28 (3.5.11-1) experimental; urgency=medium
* New upstream version.
* gnutls.pc: do not include libtool options into Libs.private.
Closes: #857943
* gnutls.pc does not refer to e.g. zlib in *both* Requires.private and
Libs.private. (LP: #1660915)
* OpenSSL wrapper: SSLv23_*_method translates to NORMAL GnuTLS priority,
which includes TLS1.2 support. Closes: #857436
* Add b-d on ca-certificates, needed for trust-store check.
gnutls28 (3.5.10-1) experimental; urgency=medium
* New upstream version.
+ gnutls.pc: do not include libidn2 in Requires.private. Closes: #855888
+ Includes fixes for GNUTLS-SA-2017-3[ABC].
+ Bump info for gnutls_store_commitment, gnutls_ocsp_resp_verify_direct
and gnutls_ocsp_resp_verify which now accept (more) flags.
gnutls28 (3.5.9-1) experimental; urgency=medium
* New upstream version.
+ Drop debian/patches/35_0*.
+ Update symbol file, adding gnutls_idna_map and gnutls_idna_reverse_map.
* Build with IDNA 2008 support, b-d on libidn2-0-dev instead of
libidn11-dev.
Date: Mon, 22 Jan 2018 13:24:04 +0100
Changed-By: Julian Andres Klode <juliank at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/gnutls28/3.5.17-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 22 Jan 2018 13:24:04 +0100
Source: gnutls28
Binary: libgnutls28-dev libgnutls30 gnutls-bin gnutls-doc libgnutlsxx28 libgnutls-openssl27 libgnutls-dane0
Architecture: source
Version: 3.5.17-1ubuntu1
Distribution: bionic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Julian Andres Klode <juliank at ubuntu.com>
Description:
gnutls-bin - GNU TLS library - commandline utilities
gnutls-doc - GNU TLS library - documentation and examples
libgnutls-dane0 - GNU TLS library - DANE security support
libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
libgnutls28-dev - GNU TLS library - development files
libgnutls30 - GNU TLS library - main runtime library
libgnutlsxx28 - GNU TLS library - C++ runtime library
Closes: 855888 857436 857943 861193 865674 867303 872454 873055 876587 885127
Launchpad-Bugs-Fixed: 1660915
Changes:
gnutls28 (3.5.17-1ubuntu1) bionic; urgency=low
.
* Merge from Debian unstable. Remaining changes:
- debian/patches/disable_global_init_override_test.patch: disable
failing test.
- debian/patches/add-openssl-test-link.patch: add link for libssl
* Build with --with-included-unistring for now as our libunistring is
too old and needs a transition.
.
gnutls28 (3.5.17-1) unstable; urgency=low
.
* New upstream version.
+ When verifying against a self signed certificate ignore issuer. That
is, ignore issuer when checking the issuer's parameters strength,
resolving issue #347 which caused self signed certificates to be
additionally marked as of insufficient security level.
Closes: #885127
.
gnutls28 (3.5.16-1) unstable; urgency=medium
.
* New upstream version.
+ Fixes interoperability issue with openssl when safe renegotiation was
used. Closes: #873055
* 35_modernize_gtkdoc.diff from upstream GIT master: Modernize gtk-doc
support. Update gtk-doc.make, m4/gtk-doc.m4 and doc/reference/Makefile.am
from gtk-doc git head (that is 1.26 +
c08cc78562c59082fc83b55b58747177510b7a70). Disable gtkdoc-check.
Closes: #876587
.
gnutls28 (3.5.15-2) unstable; urgency=medium
.
* Upload to unstable.
.
gnutls28 (3.5.15-1) experimental; urgency=medium
.
* New upstream version. Drop unneeded patches.
(31_arm64ilp32-unaccelerated.patch
35_record-added-sanity-checking-in-the-record-layer-ver.patch
36_parse_pem_cert_mem-fixed-issue-resulting-to-accessin.patch)
.
gnutls28 (3.5.14-3) unstable; urgency=low
.
* 35_record-added-sanity-checking-in-the-record-layer-ver.patch from
upstream gnutls_3_5_x branch: Prevent crash on calling gnutls_bye() on an
already terminated or deinitialized session. Closes: #867303
* 36_parse_pem_cert_mem-fixed-issue-resulting-to-accessin.patch from
upstream gnutls_3_5_x branch: parse_pem_cert_mem: fixed issue resulting
to accessing past the input data.
* 31_arm64ilp32-unaccelerated.patch by Wookey: Disable assembly
code on arm64ilp32 to fix FTBFS. Closes: #872454
* Use /usr/share/dpkg/pkg-info.mk instead of dpkg-parsechangelog, except for
the compatibility code for setting SOURCE_DATE_EPOCH with dpkg << 1.18.8.
* Standards-Version 4.0.1, update priorities (extra->optional).
.
gnutls28 (3.5.14-2) unstable; urgency=medium
.
* Upload to unstable.
.
gnutls28 (3.5.14-1) experimental; urgency=low
.
[ Dan Nicholson ]
* Build with --disable-rpath. Closes: #865674
.
[ Andreas Metzler ]
* New upstream version.
* Build against external libunistring.
.
gnutls28 (3.5.13-2) unstable; urgency=medium
.
* Upload to unstable, merge changelogs.
.
gnutls28 (3.5.13-1) experimental; urgency=low
.
* New upstream version.
+ Drop 35_test-corrected-typo-preventing-the-run-of-openpgp-te.patch.
+ Fixes GNUTLS-SA-2017-4/CVE-2017-7507 - Crash due to a null pointer
dereference. #864560
.
gnutls28 (3.5.12-2) experimental; urgency=medium
.
* 35_test-corrected-typo-preventing-the-run-of-openpgp-te.patch: Correct
typo preventing the run of openpgp test.
* Stop disabling heartbeat support. Closes: #861193
.
gnutls28 (3.5.12-1) experimental; urgency=medium
.
* New upstream version.
* Bump dep info on gnutls_session_ext_register.
.
gnutls28 (3.5.11-1) experimental; urgency=medium
.
* New upstream version.
* gnutls.pc: do not include libtool options into Libs.private.
Closes: #857943
* gnutls.pc does not refer to e.g. zlib in *both* Requires.private and
Libs.private. (LP: #1660915)
* OpenSSL wrapper: SSLv23_*_method translates to NORMAL GnuTLS priority,
which includes TLS1.2 support. Closes: #857436
* Add b-d on ca-certificates, needed for trust-store check.
.
gnutls28 (3.5.10-1) experimental; urgency=medium
.
* New upstream version.
+ gnutls.pc: do not include libidn2 in Requires.private. Closes: #855888
+ Includes fixes for GNUTLS-SA-2017-3[ABC].
+ Bump info for gnutls_store_commitment, gnutls_ocsp_resp_verify_direct
and gnutls_ocsp_resp_verify which now accept (more) flags.
.
gnutls28 (3.5.9-1) experimental; urgency=medium
.
* New upstream version.
+ Drop debian/patches/35_0*.
+ Update symbol file, adding gnutls_idna_map and gnutls_idna_reverse_map.
* Build with IDNA 2008 support, b-d on libidn2-0-dev instead of
libidn11-dev.
Checksums-Sha1:
84044d2b9e0d6a2d1749409f1a05d86383f8a545 3429 gnutls28_3.5.17-1ubuntu1.dsc
d843a34e386dd82861a9fd64b8d4e2e77fe9d991 7261864 gnutls28_3.5.17.orig.tar.xz
6e29fe1b9e09e5d109948c8ec8137d7152d0694b 534 gnutls28_3.5.17.orig.tar.xz.asc
6e8fd953a16933e989fe4e998c0cb9e2a81f8f22 107296 gnutls28_3.5.17-1ubuntu1.debian.tar.xz
2fec549a4a53461446785784c707a2b2d34c4d4d 7669 gnutls28_3.5.17-1ubuntu1_source.buildinfo
Checksums-Sha256:
82973df72233205cb1a61937ed1ebfc69b16dda2a54ae1179af116af88c2bc96 3429 gnutls28_3.5.17-1ubuntu1.dsc
86b142afef587c118d63f72ccf307f3321dbc40357aae528202b65d913d20919 7261864 gnutls28_3.5.17.orig.tar.xz
9c1bc205776f8d26d6b60a7fe85ef8b83467712ccc52c3a8b8bc2184f9869736 534 gnutls28_3.5.17.orig.tar.xz.asc
7b7e5e0fbfb8418dc6d20ca03877c83cff2471cb2b612bf714878bab268ed9b7 107296 gnutls28_3.5.17-1ubuntu1.debian.tar.xz
d72585288a7b52f8ff4cfc4677afbcf4ce9a830ea8201b06b04bbd21257bfd66 7669 gnutls28_3.5.17-1ubuntu1_source.buildinfo
Files:
25e8bbc641f9be0ec916df69edc6e460 3429 libs optional gnutls28_3.5.17-1ubuntu1.dsc
931061d2eb7e0390fffa8976ac41d16d 7261864 libs optional gnutls28_3.5.17.orig.tar.xz
8688115bf98a7e712bcf9b342c639145 534 libs optional gnutls28_3.5.17.orig.tar.xz.asc
71887dabc8b816602321998302c5f6d0 107296 libs optional gnutls28_3.5.17-1ubuntu1.debian.tar.xz
7e68d42dd5b77ac1ec992e926c6341be 7669 libs optional gnutls28_3.5.17-1ubuntu1_source.buildinfo
Original-Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----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=bSAx
-----END PGP SIGNATURE-----
More information about the Bionic-changes
mailing list