[ubuntu/noble-proposed] gnutls28 3.8.1-4ubuntu6 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Thu Nov 23 19:09:13 UTC 2023 

gnutls28 (3.8.1-4ubuntu6) noble; urgency=medium

  * SECURITY UPDATE: timing side-channel inside RSA-PSK key exchange
    - debian/patches/CVE-2023-5981.patch: side-step potential side-channel
      in lib/auth/rsa.c, lib/auth/rsa_psk.c, lib/gnutls_int.h,
      lib/priority.c.
    - CVE-2023-5981

Date: Thu, 23 Nov 2023 14:04:17 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/gnutls28/3.8.1-4ubuntu6
-------------- next part --------------
Format: 1.8
Date: Thu, 23 Nov 2023 14:04:17 -0500
Source: gnutls28
Built-For-Profiles: noudeb
Architecture: source
Version: 3.8.1-4ubuntu6
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 gnutls28 (3.8.1-4ubuntu6) noble; urgency=medium
 .
   * SECURITY UPDATE: timing side-channel inside RSA-PSK key exchange
     - debian/patches/CVE-2023-5981.patch: side-step potential side-channel
       in lib/auth/rsa.c, lib/auth/rsa_psk.c, lib/gnutls_int.h,
       lib/priority.c.
     - CVE-2023-5981
Checksums-Sha1:
 94b860cbf7f042a02fedeb2bcbf9193f862605e5 3338 gnutls28_3.8.1-4ubuntu6.dsc
 65d1639ff399864293c3567c18ea6a71c5c49712 73692 gnutls28_3.8.1-4ubuntu6.debian.tar.xz
 60749f6d5d9aa74b1928989da137ae36e77e9bcb 7667 gnutls28_3.8.1-4ubuntu6_source.buildinfo
Checksums-Sha256:
 21f37f707e098db15b5a6e264a5953460164acb759138497061e1f650d645600 3338 gnutls28_3.8.1-4ubuntu6.dsc
 01b62a9f3ef745f5c69d5452d245fd39caa5bdc7c4e1a73d15998e5459cb505a 73692 gnutls28_3.8.1-4ubuntu6.debian.tar.xz
 52f221a04651d4c374b79c735166557bf0748871815d559244431711433d7217 7667 gnutls28_3.8.1-4ubuntu6_source.buildinfo
Files:
 8ce39f64dad19ec531915732fe839367 3338 libs optional gnutls28_3.8.1-4ubuntu6.dsc
 c2e7e5b7a7d554e661d9b7b73feafea1 73692 libs optional gnutls28_3.8.1-4ubuntu6.debian.tar.xz
 d6d9994f75df5c89604e8bf6a740e86c 7667 libs optional gnutls28_3.8.1-4ubuntu6_source.buildinfo
Original-Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>

More information about the noble-changes mailing list