-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 May 2026 13:57:52 +0200
Source: gnutls28
Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym
Architecture: arm64
Version: 3.7.9-2+deb12u7
Distribution: bookworm-security
Urgency: high
Maintainer: arm64 Build Daemon (arm-ubc-01) <buildd_arm64-arm-ubc-01@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutlsxx30 - GNU TLS library - C++ runtime library
Closes: 1135319
Changes:
 gnutls28 (3.7.9-2+deb12u7) bookworm-security; urgency=high
 .
   * Cherry-pick fixes from 3.8.13 release for oldstable.
     + This includes fixes for these issues: CVE-2026-3833 CVE-2026-5260
       CVE-2026-5419 CVE-2026-33845 CVE-2026-33846 CVE-2026-42009
       CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013
       CVE-2026-42014 CVE-2026-42015.
     + CVE-2026-3832 only applied to release 3.8.9 and later, no patch needed.
     + Patchset pulled from CentOS c8s (3.6.16), split into patchlets, unfuzzed,
       adapted for 3.7 (adds
       72_0015_gnutls-3.6.16-1810-ocsp-truncated-eku.10.patch). Also added
       those patches from CentOS c9s (3.8.10) that are relevant for 3.7.9 (but
       where not for 3.6.16).
     Closes: #1135319
Checksums-Sha1:
 300245b7d51429aaeea02ac16e9af55d33004468 903356 gnutls-bin-dbgsym_3.7.9-2+deb12u7_arm64.deb
 657d364cf3ad9bd2086f1f3d958e5ef226d9747a 624452 gnutls-bin_3.7.9-2+deb12u7_arm64.deb
 328d340a69c5e19c95fb254a9667143e3a55741e 11471 gnutls28_3.7.9-2+deb12u7_arm64-buildd.buildinfo
 89f92e7d0bf0b5931b482f72fa89bf073f228af8 256972 guile-gnutls-dbgsym_3.7.9-2+deb12u7_arm64.deb
 d0487348f787ede9c1f10b6dc93695c7e36253e7 457892 guile-gnutls_3.7.9-2+deb12u7_arm64.deb
 d878bf0fc7b394d6e676a2731af7deb8c52ec619 90244 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_arm64.deb
 61f7014a813e45de3bfcf123c2d4f8453e356063 405120 libgnutls-dane0_3.7.9-2+deb12u7_arm64.deb
 9022a48d5c59410313d033bc2011e9d3d73d1c4e 90808 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_arm64.deb
 0f2cae45fe3360c246da08ee33a9513b9e2172f0 405116 libgnutls-openssl27_3.7.9-2+deb12u7_arm64.deb
 8104ba735b69558c19cca132bc8304ddb4d7a12a 1367116 libgnutls28-dev_3.7.9-2+deb12u7_arm64.deb
 6536dde8bfc06fbec1f5f2102db967120022f0dd 2107032 libgnutls30-dbgsym_3.7.9-2+deb12u7_arm64.deb
 112239069796c34df5eb51c550a0ce2aeef674fb 1317844 libgnutls30_3.7.9-2+deb12u7_arm64.deb
 61d129a790d61568ab5ea23a79c69fb4e262cbd8 48324 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_arm64.deb
 3a15d57241a5e50c9422e9bef60992abe9e4270d 13140 libgnutlsxx30_3.7.9-2+deb12u7_arm64.deb
Checksums-Sha256:
 c92bdfdcf9d1563c84d95948269a651933f43d4056723056ae4750981fd3540f 903356 gnutls-bin-dbgsym_3.7.9-2+deb12u7_arm64.deb
 db6fe27726bda2a8f4c50ea94e95002780183c4adcfbfb7e09f6573dbd5a52dd 624452 gnutls-bin_3.7.9-2+deb12u7_arm64.deb
 533e919d73cc6b24c5e3780964b5581479c90c981981bbfec24496fc7c1fad0b 11471 gnutls28_3.7.9-2+deb12u7_arm64-buildd.buildinfo
 93cd2d5bd60d5a0d24e4a113a4b11955f57112a1ba5d7d86fbb989e99cfac67f 256972 guile-gnutls-dbgsym_3.7.9-2+deb12u7_arm64.deb
 930b3613438e2201111e568c3cf15ec04c6b1b224c5732a2b26b1ccf360b3948 457892 guile-gnutls_3.7.9-2+deb12u7_arm64.deb
 ac8fec3dd8a7209e2133906d25f18c25569215e736b6b48eb0914d52dcc57259 90244 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_arm64.deb
 060ef91b0050880d5bbd97036b68b96806699062fff92dc9d6a8f438014f2e90 405120 libgnutls-dane0_3.7.9-2+deb12u7_arm64.deb
 db1cd36e836adda418de2f2d2d4db1c7618e19fc7b77fb90aa0da5c26f737dc7 90808 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_arm64.deb
 671dbb1354d36d88768ebcf9319b3babe65e3576c757404d842a411241204418 405116 libgnutls-openssl27_3.7.9-2+deb12u7_arm64.deb
 b2bf6394dd24137d2ef3f6a0e9f8a86577c09b8b8bfd619892a744b1013f37f5 1367116 libgnutls28-dev_3.7.9-2+deb12u7_arm64.deb
 c6694c4d6bdf525644c96be4ed9e7e5e8c884faa63d7f04b524b638538d73615 2107032 libgnutls30-dbgsym_3.7.9-2+deb12u7_arm64.deb
 84f7f70084c9179d6670f4a6ebdf32adc36c6e4741a3a118104377e18cfa977f 1317844 libgnutls30_3.7.9-2+deb12u7_arm64.deb
 249a93e88c71165548d9767e0324dc782ad71fccbbd9c9aaf969065d7bd555db 48324 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_arm64.deb
 4e15fa2d730846ed7459a810d727b745c091d98c5193feea43a48f50ae59c071 13140 libgnutlsxx30_3.7.9-2+deb12u7_arm64.deb
Files:
 c6d8a140527563e821313f813d1cb310 903356 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u7_arm64.deb
 1140e5ef442298501e35231648178134 624452 net optional gnutls-bin_3.7.9-2+deb12u7_arm64.deb
 759c9eba1d8b33333277ee3d95e7600b 11471 libs optional gnutls28_3.7.9-2+deb12u7_arm64-buildd.buildinfo
 564b482ea93bab7fa28bcdd92d8056c1 256972 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u7_arm64.deb
 18a2a97b4b2ecc891fed107bc1a5661e 457892 lisp optional guile-gnutls_3.7.9-2+deb12u7_arm64.deb
 e97623521aa7b55f762d9386654fa2fa 90244 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_arm64.deb
 5e02929b53028aeaec7efa0757f7d3c9 405120 libs optional libgnutls-dane0_3.7.9-2+deb12u7_arm64.deb
 c830a3499bd76cb8bd62d0e1ad6c3371 90808 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_arm64.deb
 632aaeebfe89a116b424252be914b51f 405116 libs optional libgnutls-openssl27_3.7.9-2+deb12u7_arm64.deb
 7615936553b848b45fd8ef785815571e 1367116 libdevel optional libgnutls28-dev_3.7.9-2+deb12u7_arm64.deb
 dbff1ffc8810021096c2754be491544e 2107032 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u7_arm64.deb
 6123d229abd6858154ac74dc261024ca 1317844 libs optional libgnutls30_3.7.9-2+deb12u7_arm64.deb
 eae6289c58fb92807ab32cae888ec858 48324 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_arm64.deb
 dd702b5b6eb450162da95f759aac5af2 13140 libs optional libgnutlsxx30_3.7.9-2+deb12u7_arm64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE0Ha//LlsGOpbQ/H4xqCFmsOWgoYFAmoJ8/YACgkQxqCFmsOW
goYKMQ//ZJTzzAZsxiztMUaZodBWSXO17sx0phO8OJI1crI0yrK9I4N5am4onkgH
5bB0iN26GPWAIPEA9hR8VxeYeJ0E/6pkngpnqYEW3YM5PyMPIkbYTXMwKAulYaIp
xTrGVywySW2hIgexTquvd/+/nQn2105Qc6dld0GkLjwFdYOZEyfOVoOoSLg+z+Bh
5LjsHCDxRpWNKBUJ+ZjgP8a8BGJHqISFApkLZELSZreS7oH+TRs9T4mOF+QQM5EQ
F8ErMzTJYJsFKC0YKuew60tki3oTO3b55145TQcgMhKTXBWjCZvtYGbwB7AOwE5i
50cH6oP/AvbUNKefhPWjYZ7AO1Trzsy4EdGMSiksJOmKbG3eZCXOXv0MjqfsMbG+
jLxgWS0FfO9kxVxRh/StN25br0Yuxo3G/i4K80fm5gyr/Bp/UryR6oU+lPI/+lfp
1AClKvfnPSUkEr5J5ePaRHoc0ak7MvVL/bAwLNqjn9BT5u3PCJwDWvi13yx7cqBn
k0la32ANzaw+tFI5ANerEgVnvHeFvO45NY8qZkf5qBD8siojucVSJViHWYo5BrOZ
++nnF9oPngAjkSBIpm3Q8qS0lQ0etRXOcBcHnY1ENQaargGFNiVxdCCzyliPeY8E
9VfBblSM9u6bfx+I7pbowMGGh24TD3f8xw79icUUeQ1qNXs4J9Y=
=ngYw
-----END PGP SIGNATURE-----