-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 May 2026 13:57:52 +0200
Source: gnutls28
Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym
Architecture: armhf
Version: 3.7.9-2+deb12u7
Distribution: bookworm-security
Urgency: high
Maintainer: armhf Build Daemon (arm-ubc-02) <buildd_arm64-arm-ubc-02@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutlsxx30 - GNU TLS library - C++ runtime library
Closes: 1135319
Changes:
 gnutls28 (3.7.9-2+deb12u7) bookworm-security; urgency=high
 .
   * Cherry-pick fixes from 3.8.13 release for oldstable.
     + This includes fixes for these issues: CVE-2026-3833 CVE-2026-5260
       CVE-2026-5419 CVE-2026-33845 CVE-2026-33846 CVE-2026-42009
       CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013
       CVE-2026-42014 CVE-2026-42015.
     + CVE-2026-3832 only applied to release 3.8.9 and later, no patch needed.
     + Patchset pulled from CentOS c8s (3.6.16), split into patchlets, unfuzzed,
       adapted for 3.7 (adds
       72_0015_gnutls-3.6.16-1810-ocsp-truncated-eku.10.patch). Also added
       those patches from CentOS c9s (3.8.10) that are relevant for 3.7.9 (but
       where not for 3.6.16).
     Closes: #1135319
Checksums-Sha1:
 9be2a2e5516d347c40d6c6be90045bd7d219c7e4 842904 gnutls-bin-dbgsym_3.7.9-2+deb12u7_armhf.deb
 eabd4d4d47420daf7d5560ebd01de91a160b061c 616320 gnutls-bin_3.7.9-2+deb12u7_armhf.deb
 88fdd543247bd41e935cb2c4d33664b0984edb9a 11315 gnutls28_3.7.9-2+deb12u7_armhf-buildd.buildinfo
 70d9c7d41c54f7e8ea2b02bed7ec7157bafe2976 253760 guile-gnutls-dbgsym_3.7.9-2+deb12u7_armhf.deb
 ec5a3a52592fb4d85272bd4bfbe8cdebc30e9c0d 454268 guile-gnutls_3.7.9-2+deb12u7_armhf.deb
 67712a213504f3da61c73a58c7b551ba1925f128 90412 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_armhf.deb
 deb734025f99918c73b9eba38e8f1ffece37bac9 400792 libgnutls-dane0_3.7.9-2+deb12u7_armhf.deb
 911220dece28bada2daa958d814c891c5160611f 91612 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_armhf.deb
 dc4b3504f9ef84ec1d1221c7b9705ca299c48ca8 400612 libgnutls-openssl27_3.7.9-2+deb12u7_armhf.deb
 b05b33711f1804cbb942f6c272fe4f6e2229116b 1291272 libgnutls28-dev_3.7.9-2+deb12u7_armhf.deb
 2b625e26b384b283a6643302e90d770616e1cb14 2037980 libgnutls30-dbgsym_3.7.9-2+deb12u7_armhf.deb
 a4c2e1ad2ef89f5668d974627d1937df100c63b6 1327184 libgnutls30_3.7.9-2+deb12u7_armhf.deb
 69b0ac6d3f938b965607ea9e16be9bfaca343724 49392 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_armhf.deb
 fc176ad9dda501a9337b704777abfb98d31236d5 12164 libgnutlsxx30_3.7.9-2+deb12u7_armhf.deb
Checksums-Sha256:
 5f7dc5c316ebcc99393dfa9f89c1ff3bfd2b9e30bc1862e2dffb98556fc1e864 842904 gnutls-bin-dbgsym_3.7.9-2+deb12u7_armhf.deb
 bc04835529f680c3ee7ae8944097c0ccbb9d853525dc87666ad0758bc5ce870b 616320 gnutls-bin_3.7.9-2+deb12u7_armhf.deb
 d5715ed09cc4e630bbf6e44fcd993294359e1e2051cd2bd13d6a439934273a94 11315 gnutls28_3.7.9-2+deb12u7_armhf-buildd.buildinfo
 f4ab9691cccae207b6014ab8b6da497284d729e1bb7e93289f179f1487aba17a 253760 guile-gnutls-dbgsym_3.7.9-2+deb12u7_armhf.deb
 ba2474d4e9fefacb78eca165ae9156ebb94df68552f85f5908c4f3d10806c190 454268 guile-gnutls_3.7.9-2+deb12u7_armhf.deb
 864def5e07e9a93bf4bce8bee2f460c9a3315cf9687e68ca7d33bda5d1805ded 90412 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_armhf.deb
 45c21b751875d59c025e088f7a0cfd426ef13a8a05403e5d9bf2753524e06a4e 400792 libgnutls-dane0_3.7.9-2+deb12u7_armhf.deb
 7569fbf3bb51302d57ee83a1fe9c26ce3b9cd0e5021b8b384ed84308ca34a8b1 91612 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_armhf.deb
 02d9f274316d73795d55d3b0414887732d7e4f2d53ccd4ffe5a34df468288ab7 400612 libgnutls-openssl27_3.7.9-2+deb12u7_armhf.deb
 8c0f566f864b51f6cff646c09081474c1ec930b01e9ef978ae0d69edfc617f0c 1291272 libgnutls28-dev_3.7.9-2+deb12u7_armhf.deb
 0ab4e48c3dd96a6961e99715fcb0f0e693d42e62c87c248558176dcb4fc6351a 2037980 libgnutls30-dbgsym_3.7.9-2+deb12u7_armhf.deb
 99d9641407789e0ee373ae34da3c5670256707534699cb02d0619a5bc0c1d3ca 1327184 libgnutls30_3.7.9-2+deb12u7_armhf.deb
 16d3563df64b75de4f090b12678c64ad7d0e6cf2f42ba7e68fe092f0002dfd48 49392 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_armhf.deb
 e92c9fa905d2ec0a073d3a2ba3cbe47d9fb49c45bc911fddcba232d727ec498b 12164 libgnutlsxx30_3.7.9-2+deb12u7_armhf.deb
Files:
 8dee85fb35bba6b642b89c5c84bc9ffd 842904 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u7_armhf.deb
 f7c19dca283357b11303a2a8d272aa13 616320 net optional gnutls-bin_3.7.9-2+deb12u7_armhf.deb
 139c3fd41a1b85769023fc7d1c4ab4a3 11315 libs optional gnutls28_3.7.9-2+deb12u7_armhf-buildd.buildinfo
 0463e91980f04598ddf9238c34abc7ed 253760 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u7_armhf.deb
 64c668243d8099d1aa0cd819a1da94b3 454268 lisp optional guile-gnutls_3.7.9-2+deb12u7_armhf.deb
 df6f2a7f814c7e08761e2e3cdcfbfd37 90412 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_armhf.deb
 04c831f61fcad6086a0e19b4cfcc6440 400792 libs optional libgnutls-dane0_3.7.9-2+deb12u7_armhf.deb
 27474d922dd9ff27372279a133d640b7 91612 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_armhf.deb
 00bf705ac4a9ed07950e53b956e8379d 400612 libs optional libgnutls-openssl27_3.7.9-2+deb12u7_armhf.deb
 d34d4247a0c71ea84a9331a73439f68e 1291272 libdevel optional libgnutls28-dev_3.7.9-2+deb12u7_armhf.deb
 cfd69b890814505d39faf8d5115f55f7 2037980 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u7_armhf.deb
 4018ad181e44898ce728cdc1e62aa2b0 1327184 libs optional libgnutls30_3.7.9-2+deb12u7_armhf.deb
 0428ba8e73c13abea44d63acb2a70e83 49392 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_armhf.deb
 b81eff9c3159aeeb2e6bababc1c56db0 12164 libs optional libgnutlsxx30_3.7.9-2+deb12u7_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=7E+x
-----END PGP SIGNATURE-----