-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 May 2026 13:57:52 +0200
Source: gnutls28
Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym
Architecture: armel
Version: 3.7.9-2+deb12u7
Distribution: bookworm-security
Urgency: high
Maintainer: armel Build Daemon (arm-conova-03) <buildd_arm64-arm-conova-03@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutlsxx30 - GNU TLS library - C++ runtime library
Closes: 1135319
Changes:
 gnutls28 (3.7.9-2+deb12u7) bookworm-security; urgency=high
 .
   * Cherry-pick fixes from 3.8.13 release for oldstable.
     + This includes fixes for these issues: CVE-2026-3833 CVE-2026-5260
       CVE-2026-5419 CVE-2026-33845 CVE-2026-33846 CVE-2026-42009
       CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013
       CVE-2026-42014 CVE-2026-42015.
     + CVE-2026-3832 only applied to release 3.8.9 and later, no patch needed.
     + Patchset pulled from CentOS c8s (3.6.16), split into patchlets, unfuzzed,
       adapted for 3.7 (adds
       72_0015_gnutls-3.6.16-1810-ocsp-truncated-eku.10.patch). Also added
       those patches from CentOS c9s (3.8.10) that are relevant for 3.7.9 (but
       where not for 3.6.16).
     Closes: #1135319
Checksums-Sha1:
 7d65c9d829eb655fbbef4e603c253c36564c2ac7 831448 gnutls-bin-dbgsym_3.7.9-2+deb12u7_armel.deb
 be8586b3d487d113d26c18bea2c525432c79b2fd 610052 gnutls-bin_3.7.9-2+deb12u7_armel.deb
 b6a51f36d3f67fbcc019182530d8e207718d0d5c 11313 gnutls28_3.7.9-2+deb12u7_armel-buildd.buildinfo
 1578d0dd4ceec45695bc461d8a99ce180cc41efb 258188 guile-gnutls-dbgsym_3.7.9-2+deb12u7_armel.deb
 f8ad6a834493964f647ca6c8a6e168a391843ced 455844 guile-gnutls_3.7.9-2+deb12u7_armel.deb
 df02c028b4f892dcef223e85c6d4c12e3a4dbf65 89348 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_armel.deb
 e1a860981c5684415fbfeee6994d7dc0dccedb0d 402872 libgnutls-dane0_3.7.9-2+deb12u7_armel.deb
 7e88806595b32be321215c9d6302bffb7bdcc1ac 90904 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_armel.deb
 01a2fdfeba9ee2a0733736d0ad521b4f3d1d7a34 402700 libgnutls-openssl27_3.7.9-2+deb12u7_armel.deb
 c6c5d492701a8dcb59cd423fd676db3006daf89e 1282992 libgnutls28-dev_3.7.9-2+deb12u7_armel.deb
 94e52caabd0ed831cd3a167c22cd6f9adb510f40 2011392 libgnutls30-dbgsym_3.7.9-2+deb12u7_armel.deb
 530b9b54fdd29ba96a8c2eda5c71ba2706ab3f07 1316128 libgnutls30_3.7.9-2+deb12u7_armel.deb
 c630994dd0c1d4726a42c1ef201baaa300b7295c 49104 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_armel.deb
 6aa922f9d2e6da2127f4eeb03064b8af38c96b92 11980 libgnutlsxx30_3.7.9-2+deb12u7_armel.deb
Checksums-Sha256:
 9230cd2909b5846b9b24f90109c51b7a622ef48c5b733062592a13eb2c81702f 831448 gnutls-bin-dbgsym_3.7.9-2+deb12u7_armel.deb
 333e91f970989970a720184c8716951e9362add0b7e8e6691cf6a9993de8f674 610052 gnutls-bin_3.7.9-2+deb12u7_armel.deb
 1fa815067c6b6555ce89db441d1adf8f52dfaead842cd3c6255ceaa84829f5d4 11313 gnutls28_3.7.9-2+deb12u7_armel-buildd.buildinfo
 a21a54b3547d9c126c467f080fd9f5af315d49409db96be67c46bd206fd07907 258188 guile-gnutls-dbgsym_3.7.9-2+deb12u7_armel.deb
 4b62bad14e9794af9d880ce00946cb92e8cddba4f8eb69869d3a898ac6631b24 455844 guile-gnutls_3.7.9-2+deb12u7_armel.deb
 de4f7ea9d78f74343aa8d3c4bd7c1fdc1e47ff5ff753f9e6dce1641d18ba59a9 89348 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_armel.deb
 9cb2096f296ca2b8c48362dcb08db77c19cbed23d3b12b0eae3e5101cd011875 402872 libgnutls-dane0_3.7.9-2+deb12u7_armel.deb
 9467bf5fe1bf13ce3974a81375527d1133ba8fe3d9922bab5f45d44cf8010e40 90904 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_armel.deb
 94534cd517ca08e684c0b8f21399b38f63f4863344e1a9cbc3eedeb921575229 402700 libgnutls-openssl27_3.7.9-2+deb12u7_armel.deb
 3a87c06cad7f980cd454ffb474fb7ac4c93b49ce1e0fef241cfa10608bf97cce 1282992 libgnutls28-dev_3.7.9-2+deb12u7_armel.deb
 ab72b7ad6e00848788e8d571fb3ded89fd99ed8204274847fbff78d05c90f8eb 2011392 libgnutls30-dbgsym_3.7.9-2+deb12u7_armel.deb
 b9eff9d33ef1ddea84007edb5924b1f916bfe584381e0ebec5eff1135275f3c1 1316128 libgnutls30_3.7.9-2+deb12u7_armel.deb
 40bf743fd6025b2a3343aa107b102e8d3ac968717c5750975bb6e640cc272d0c 49104 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_armel.deb
 85cd41bb76db2f37a67ba42f9b493ed3e339efff5986df019b846e59ec28df58 11980 libgnutlsxx30_3.7.9-2+deb12u7_armel.deb
Files:
 4479aaa65baaa5ee817de782e44e9757 831448 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u7_armel.deb
 c024cf9318eceb7259c5b4e08da5ee70 610052 net optional gnutls-bin_3.7.9-2+deb12u7_armel.deb
 217069deb4f47711c8a2e63110aa49d2 11313 libs optional gnutls28_3.7.9-2+deb12u7_armel-buildd.buildinfo
 886cdfd22adec103cd9bd182c02ffae2 258188 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u7_armel.deb
 2d715edf5e116739e1d28facdf078ad7 455844 lisp optional guile-gnutls_3.7.9-2+deb12u7_armel.deb
 ed6a171cc1dcea0e80ffa5bd39e691e1 89348 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_armel.deb
 8dcb4f1d864b124ff081b863af502a64 402872 libs optional libgnutls-dane0_3.7.9-2+deb12u7_armel.deb
 93563f2e9b46cb4272eb1ad47363baa1 90904 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_armel.deb
 7e3a595779effc8ce1757bf3ec365659 402700 libs optional libgnutls-openssl27_3.7.9-2+deb12u7_armel.deb
 15f10626a9f564de678f1001b42f7645 1282992 libdevel optional libgnutls28-dev_3.7.9-2+deb12u7_armel.deb
 c4a1cc6894e993d93bd4ccf7621ee492 2011392 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u7_armel.deb
 4d72d086aa78a3515b182e005c199e30 1316128 libs optional libgnutls30_3.7.9-2+deb12u7_armel.deb
 eae2e8d24c1df15d8b05d9372deba32d 49104 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_armel.deb
 5ce53aba6185e5e34664097b0aeb0eec 11980 libs optional libgnutlsxx30_3.7.9-2+deb12u7_armel.deb

-----BEGIN PGP SIGNATURE-----
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=wP0n
-----END PGP SIGNATURE-----