[ubuntu/noble-proposed] gnutls28 3.8.3-1ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Fri Jan 26 13:38:12 UTC 2024 

gnutls28 (3.8.3-1ubuntu1) noble; urgency=medium

  * Merge from Debian unstable. Remaining changes:
    - Enable CET.
    - Set default priority string to only allow TLS1.2, DTLS1.2, and
      TLS1.3 with medium security profile (2048 RSA keys minimum, and
      similar).
    - Forcefully disable TLS 1.0 and 1.1 through /etc/gnutls/config.
    - Forcefully disable DTLS 0.9 and 1.0 through /etc/gnutls/config.
    - Fix logic for i386 autopkgtest on an amd64 host
    - Don't run the testsuite under the influence of a configuration file.
  * debian/patches/CVE-2023-5981.patch: dropped, included in new version.

gnutls28 (3.8.3-1) unstable; urgency=medium

  * New upstream version.
    Fix assertion failure when verifying a certificate chain with a cycle of
    cross signatures. CVE-2024-0567 GNUTLS-SA-2024-01-09 Closes: #1061045
    Fix more timing side-channel inside RSA-PSK key exchange. CVE-2024-0553
    GNUTLS-SA-2024-01-14 Closes: #1061046

gnutls28 (3.8.2-1) unstable; urgency=medium

  * New upstream version.
    + Drop cherrypicked patches.
    + Update symbol file.
    + Update copyright file.
    + Includes fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23. Closes: #1056188

Date: Fri, 26 Jan 2024 07:39:04 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/gnutls28/3.8.3-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 26 Jan 2024 07:39:04 -0500
Source: gnutls28
Built-For-Profiles: noudeb
Architecture: source
Version: 3.8.3-1ubuntu1
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Closes: 1056188 1061045 1061046
Changes:
 gnutls28 (3.8.3-1ubuntu1) noble; urgency=medium
 .
   * Merge from Debian unstable. Remaining changes:
     - Enable CET.
     - Set default priority string to only allow TLS1.2, DTLS1.2, and
       TLS1.3 with medium security profile (2048 RSA keys minimum, and
       similar).
     - Forcefully disable TLS 1.0 and 1.1 through /etc/gnutls/config.
     - Forcefully disable DTLS 0.9 and 1.0 through /etc/gnutls/config.
     - Fix logic for i386 autopkgtest on an amd64 host
     - Don't run the testsuite under the influence of a configuration file.
   * debian/patches/CVE-2023-5981.patch: dropped, included in new version.
 .
 gnutls28 (3.8.3-1) unstable; urgency=medium
 .
   * New upstream version.
     Fix assertion failure when verifying a certificate chain with a cycle of
     cross signatures. CVE-2024-0567 GNUTLS-SA-2024-01-09 Closes: #1061045
     Fix more timing side-channel inside RSA-PSK key exchange. CVE-2024-0553
     GNUTLS-SA-2024-01-14 Closes: #1061046
 .
 gnutls28 (3.8.2-1) unstable; urgency=medium
 .
   * New upstream version.
     + Drop cherrypicked patches.
     + Update symbol file.
     + Update copyright file.
     + Includes fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23. Closes: #1056188
Checksums-Sha1:
 24c260284399ed93de9dbabdd9daf829a64a2f37 3338 gnutls28_3.8.3-1ubuntu1.dsc
 806156ac9563caab642d6274496b9cc5b2117612 6463720 gnutls28_3.8.3.orig.tar.xz
 e256237d54d45e4b6f46fe692651d6dea33f359c 854 gnutls28_3.8.3.orig.tar.xz.asc
 d71b31f0fe13c4b7fcd517cf061fc76754d486c3 79352 gnutls28_3.8.3-1ubuntu1.debian.tar.xz
 2f312a2f9654b703f5d38040adb1949a9ed6c969 7899 gnutls28_3.8.3-1ubuntu1_source.buildinfo
Checksums-Sha256:
 a10a300632ddc3230687c8cd7c54d6ab9d0554ae88264b989d0fbadbe5f6a4cd 3338 gnutls28_3.8.3-1ubuntu1.dsc
 f74fc5954b27d4ec6dfbb11dea987888b5b124289a3703afcada0ee520f4173e 6463720 gnutls28_3.8.3.orig.tar.xz
 b2b90d225728890b0e2aa7c05e5f25f8ba1282821b46e72cd99f0c732b639cef 854 gnutls28_3.8.3.orig.tar.xz.asc
 ebe27770175c318e1ca93380189322706e35b77cbe23ed3988f3322e5a848c9f 79352 gnutls28_3.8.3-1ubuntu1.debian.tar.xz
 c4167700e97f6e97e16db9aa29a79034517c3ed1bd71e2f5e1e003a9e14b5956 7899 gnutls28_3.8.3-1ubuntu1_source.buildinfo
Files:
 d8ade3eef2adfe85d2214326ddf2e11b 3338 libs optional gnutls28_3.8.3-1ubuntu1.dsc
 269966167fa5bf8bae5f7534bcc3c454 6463720 libs optional gnutls28_3.8.3.orig.tar.xz
 8da0da357d6762b98a491bf0a3fc6e1f 854 libs optional gnutls28_3.8.3.orig.tar.xz.asc
 e66f17808003397320b274173b7aed39 79352 libs optional gnutls28_3.8.3-1ubuntu1.debian.tar.xz
 8225af3eb91825860c8d434fa7ecbc84 7899 libs optional gnutls28_3.8.3-1ubuntu1_source.buildinfo
Original-Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>

More information about the noble-changes mailing list