-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 15 Jul 2025 07:02:19 +0200
Source: gnutls28
Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym
Architecture: mips64el
Version: 3.7.9-2+deb12u5
Distribution: bookworm-security
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-03) <buildd_mips64el-mipsel-osuosl-03@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutlsxx30 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.7.9-2+deb12u5) bookworm-security; urgency=medium
 .
   * Cherry-pick fixes from 3.8.10 release:
      + libgnutls: Fix NULL pointer dereference when 2nd Client Hello omits
        PSK Reported by Stefan Bühler.
        [GNUTLS-SA-2025-07-07-4, CVSS: medium] [CVE-2025-6395]
      + libgnutls: Fix heap read buffer overrun in parsing X.509 SCTS
        timestamps Spotted by oss-fuzz and reported by OpenAI Security
        Research Team, and fix developed by Andrew Hamilton.
        [GNUTLS-SA-2025-07-07-1, CVSS: medium] [CVE-2025-32989]
      + libgnutls: Fix double-free upon error when exporting otherName in
        SAN Reported by OpenAI Security Research Team.
        [GNUTLS-SA-2025-07-07-2, CVSS: low] [CVE-2025-32988]
      + certtool: Fix 1-byte write buffer overrun when parsing template
        Reported by David Aitel. [GNUTLS-SA-2025-07-07-3, CVSS: low]
        [CVE-2025-32990]
      + Fixes for memory leaks in lib/x509/x509_ext.c andlib/hello_ext.c.
      + Fix uninitialized memory read while processing the "pre_shared_key"
        extension in TLS 1.3.
      + Avoid uninitialized use of crq version.
Checksums-Sha1:
 10f9d7552878b9db1999e2c79927a96386081246 872120 gnutls-bin-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 58e3211cb09daac1accc9435d179484c1cd77dd5 620512 gnutls-bin_3.7.9-2+deb12u5_mips64el.deb
 83e28f5afda2feb0070aaaf9e47fc61335c64fb9 11336 gnutls28_3.7.9-2+deb12u5_mips64el-buildd.buildinfo
 ef767f3d537c39594613c4b7ad1570d9f593447c 274144 guile-gnutls-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 490b92e277a8fb2b02ac062564f6a6e2962af3f1 451292 guile-gnutls_3.7.9-2+deb12u5_mips64el.deb
 4a87a14b37716c69e570250a2e6c1af9a7dbdcf2 95204 libgnutls-dane0-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 f840f3e9872217d2f7e097e9aeec1dcb5ae6a4ad 404268 libgnutls-dane0_3.7.9-2+deb12u5_mips64el.deb
 82c96ba94839d95066a27c47ac242b58bfc4a9b8 96380 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 8da18dcdec6c7f6ea94b051a521f6c5944b9f3a1 403932 libgnutls-openssl27_3.7.9-2+deb12u5_mips64el.deb
 4cee5bb33b75911788810119f351cef88cfdf928 1354608 libgnutls28-dev_3.7.9-2+deb12u5_mips64el.deb
 2e53f1570c9ac1f96779e3768669529dc49a66e9 2055288 libgnutls30-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 7003793268d8961f06426ee0c5606f3cbdca6b74 1230036 libgnutls30_3.7.9-2+deb12u5_mips64el.deb
 01544b178624eb17e7f1f71be9c2300a1f1b9476 49104 libgnutlsxx30-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 41e3a27d1b04aa4c84ef0580c6aabf517fe71f13 13120 libgnutlsxx30_3.7.9-2+deb12u5_mips64el.deb
Checksums-Sha256:
 2eec353d0429ab6ea4a3b93f17376539a3aa35b0940aa65b742a52f0cde18acf 872120 gnutls-bin-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 7473e39cc46efddd37998f12e88b86229a52d4ef5df0121d2f054c5fa8fa53c2 620512 gnutls-bin_3.7.9-2+deb12u5_mips64el.deb
 7804d901cee183f89af5283956768e88dc379e53bdc6cbe9bc99ff0dfe9f5330 11336 gnutls28_3.7.9-2+deb12u5_mips64el-buildd.buildinfo
 39db571240def93da73a4f49cf4cccfe7a3a6805f18c05f1d3817f282a1e2adb 274144 guile-gnutls-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 7de28d26c9c97f8dbd0e4c4f364b94826a574305e7f8f1bcd518577d7169b828 451292 guile-gnutls_3.7.9-2+deb12u5_mips64el.deb
 8cd8acdfa67af6d22a9a88fcb348c1a36f3a3c3bcdcdcced38d4a0fcf23f3d6d 95204 libgnutls-dane0-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 7967fec0167101ccecbf2888d00c2e66fa67b36b8b951ddfe2f94b05c21a1d24 404268 libgnutls-dane0_3.7.9-2+deb12u5_mips64el.deb
 d9eb26680c1a49a9e27a5bab412b391aecaf35a887d739f3e4984f0f575d6ce4 96380 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 e6f00ae16d630fe8542d43563a90df1bf8711a03bcb866e75d358569b1054d21 403932 libgnutls-openssl27_3.7.9-2+deb12u5_mips64el.deb
 e8716714d757ce96a7a34a7c0e55ce80121baad8fd66b2eb5f2e20534850d7bc 1354608 libgnutls28-dev_3.7.9-2+deb12u5_mips64el.deb
 1c59688bf0227f90e55c4438717fc26b01556d252f9b44b5b7072e52bcfdde11 2055288 libgnutls30-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 1646749ccb57821596ca27e66cb6e6faf5d5c214ab315058c2313be96fd67e96 1230036 libgnutls30_3.7.9-2+deb12u5_mips64el.deb
 d1dfba1e1b6abded62441102298b2ed5ca6ff7c64542a323b971eec537a7d157 49104 libgnutlsxx30-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 ed58fe639f692fefbb644e2f4e2ecbe34ffb99eed4c2634f52368cc69604c691 13120 libgnutlsxx30_3.7.9-2+deb12u5_mips64el.deb
Files:
 1d5fd59ec741d714356f982d204c50e7 872120 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 b300f5cde57655fe874fdfeb79c4bf94 620512 net optional gnutls-bin_3.7.9-2+deb12u5_mips64el.deb
 243395d9226c78e14b613d7758ab8270 11336 libs optional gnutls28_3.7.9-2+deb12u5_mips64el-buildd.buildinfo
 659426dbb7322b41b039083ccd812d78 274144 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 076be28ee296c9a4fc9c6c58e8a5b0e7 451292 lisp optional guile-gnutls_3.7.9-2+deb12u5_mips64el.deb
 cc86c19fa26a76d0568b9f79e31b9a1d 95204 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 d7678603ffdb7ee0fb4ae4fe81128c1c 404268 libs optional libgnutls-dane0_3.7.9-2+deb12u5_mips64el.deb
 0b16ac18c23a7847ad346c8167ac32e6 96380 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 e361546ca18266d49c155b819d14849f 403932 libs optional libgnutls-openssl27_3.7.9-2+deb12u5_mips64el.deb
 54584f8c5c5e295f1ccc6ee4e78e5155 1354608 libdevel optional libgnutls28-dev_3.7.9-2+deb12u5_mips64el.deb
 ee74113028d2930fecf9f948099ac2f9 2055288 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 325d12f1152891cdb528f533cbbcea2d 1230036 libs optional libgnutls30_3.7.9-2+deb12u5_mips64el.deb
 655ca3bf8b9ff835b66a7ee5115b6f01 49104 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u5_mips64el.deb
 c358fe3075a3db5cb7c5e0a47fab3151 13120 libs optional libgnutlsxx30_3.7.9-2+deb12u5_mips64el.deb

-----BEGIN PGP SIGNATURE-----
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=EnOG
-----END PGP SIGNATURE-----