-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 15 May 2026 13:57:52 +0200
Source: gnutls28
Binary: gnutls-bin gnutls-bin-dbgsym guile-gnutls guile-gnutls-dbgsym libgnutls-dane0 libgnutls-dane0-dbgsym libgnutls-openssl27 libgnutls-openssl27-dbgsym libgnutls28-dev libgnutls30 libgnutls30-dbgsym libgnutlsxx30 libgnutlsxx30-dbgsym
Architecture: s390x
Version: 3.7.9-2+deb12u7
Distribution: bookworm-security
Urgency: high
Maintainer: s390x Build Daemon (zandonai) <buildd_s390x-zandonai@buildd.debian.org>
Changed-By: Andreas Metzler <ametzler@debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-dane0 - GNU TLS library - DANE security support
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutlsxx30 - GNU TLS library - C++ runtime library
Closes: 1135319
Changes:
 gnutls28 (3.7.9-2+deb12u7) bookworm-security; urgency=high
 .
   * Cherry-pick fixes from 3.8.13 release for oldstable.
     + This includes fixes for these issues: CVE-2026-3833 CVE-2026-5260
       CVE-2026-5419 CVE-2026-33845 CVE-2026-33846 CVE-2026-42009
       CVE-2026-42010 CVE-2026-42011 CVE-2026-42012 CVE-2026-42013
       CVE-2026-42014 CVE-2026-42015.
     + CVE-2026-3832 only applied to release 3.8.9 and later, no patch needed.
     + Patchset pulled from CentOS c8s (3.6.16), split into patchlets, unfuzzed,
       adapted for 3.7 (adds
       72_0015_gnutls-3.6.16-1810-ocsp-truncated-eku.10.patch). Also added
       those patches from CentOS c9s (3.8.10) that are relevant for 3.7.9 (but
       where not for 3.6.16).
     Closes: #1135319
Checksums-Sha1:
 df758a5239417513ff9a22eac88cfca018a93e36 823208 gnutls-bin-dbgsym_3.7.9-2+deb12u7_s390x.deb
 ff3ba518b05be6b4a046c8bed875bb31412310a4 621280 gnutls-bin_3.7.9-2+deb12u7_s390x.deb
 b4e11eac6212d211280f75ed659f323bf841575a 11327 gnutls28_3.7.9-2+deb12u7_s390x-buildd.buildinfo
 4e04a02ed4884152b2f465a16064d2229c045552 255432 guile-gnutls-dbgsym_3.7.9-2+deb12u7_s390x.deb
 6e573a23df1c145c5727578abc556b75da450569 458520 guile-gnutls_3.7.9-2+deb12u7_s390x.deb
 f6eeeada71ed961742f679dcde40eb23f60b91b2 89988 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_s390x.deb
 a6cac669fd3eb4deb82e07cc621ddfdc5771c748 405476 libgnutls-dane0_3.7.9-2+deb12u7_s390x.deb
 74d522dd3a34f71eb17d618a4f94a835195f173a 91036 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_s390x.deb
 37394343fe7dd8fac7b6565a7dfae5274ebf28ec 405608 libgnutls-openssl27_3.7.9-2+deb12u7_s390x.deb
 4888cfdb175cec7f7243be58141022b4148ec8c6 1229984 libgnutls28-dev_3.7.9-2+deb12u7_s390x.deb
 1b35230f1f494d4a2e55c9b7ba744ca9e44422e3 1959080 libgnutls30-dbgsym_3.7.9-2+deb12u7_s390x.deb
 6b95e435dd27409d2bcbecaa40ddb6077aa52c2f 1291916 libgnutls30_3.7.9-2+deb12u7_s390x.deb
 913eee902e64d43ea770ef1c5fb1ff0791877f98 48304 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_s390x.deb
 9527fd956d4a42aa9e4472f85facbec401610ef4 13676 libgnutlsxx30_3.7.9-2+deb12u7_s390x.deb
Checksums-Sha256:
 db528f38bbd29a41d903699e205478c43d7aa551ef088ef239101c7b747f2ccc 823208 gnutls-bin-dbgsym_3.7.9-2+deb12u7_s390x.deb
 39e4a81a27f5accb73be24938a10298ed3fa9c43c49589e70a9a3ba4dd482fc5 621280 gnutls-bin_3.7.9-2+deb12u7_s390x.deb
 b0f8d24a7dbf9534fad37d56f996d0084017f3b0f323fbb98a2db64ad0349f46 11327 gnutls28_3.7.9-2+deb12u7_s390x-buildd.buildinfo
 3fd1c3a2c521d867e951fee27628245684c36014911a11314352b82f73a63997 255432 guile-gnutls-dbgsym_3.7.9-2+deb12u7_s390x.deb
 0cdbd24997c50122e97c11fe91e23b41ae5b9c7daef170d2ef848034d86f2839 458520 guile-gnutls_3.7.9-2+deb12u7_s390x.deb
 1092ba551ff7cfe0de24b40ecaf9b59ba6d847683c264f17a0a2a92f3ddb59ce 89988 libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_s390x.deb
 d2a602aeeb9ed74e753c3527d696cb471b921c1178dae3655ef2397b9f628dfc 405476 libgnutls-dane0_3.7.9-2+deb12u7_s390x.deb
 eac1779492601dd7ba52e773503a2971667cf85440a590db73021e217feeca42 91036 libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_s390x.deb
 526b2451774d5741a657731290fce0a39358432475fb08b872d933999aab84df 405608 libgnutls-openssl27_3.7.9-2+deb12u7_s390x.deb
 3514b27a36de63e42df0598c7df9874f1f4b4a2a9eb7d557333bb668e0e588a2 1229984 libgnutls28-dev_3.7.9-2+deb12u7_s390x.deb
 017d32a2888cff27ce303241c07bac8c6099779fc51eb8cfe71b06f33a33d21b 1959080 libgnutls30-dbgsym_3.7.9-2+deb12u7_s390x.deb
 b5892df2623359d224b7cc116a3bff659af584bd115a5185af45798e9739408c 1291916 libgnutls30_3.7.9-2+deb12u7_s390x.deb
 4e20ceef2857a5f7b33e097ef04f655152c8e8219de5b53c6bcd9ea4906fa189 48304 libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_s390x.deb
 7d82e7de46fd02c2e545b16cc5dd21c89a63dcf5601338fdfdae3bab98225b1f 13676 libgnutlsxx30_3.7.9-2+deb12u7_s390x.deb
Files:
 6c480ef0fa9a5b65b0caecbc77c6fc48 823208 debug optional gnutls-bin-dbgsym_3.7.9-2+deb12u7_s390x.deb
 8c8b6cd024d06b49239cd9bef176eb1a 621280 net optional gnutls-bin_3.7.9-2+deb12u7_s390x.deb
 905231f7b53c1d1ee16c0e35294eb5c3 11327 libs optional gnutls28_3.7.9-2+deb12u7_s390x-buildd.buildinfo
 a02b7be992d69456ce4891b6b8cd848a 255432 debug optional guile-gnutls-dbgsym_3.7.9-2+deb12u7_s390x.deb
 51f52972bb6142f796ee2a82935fd8a6 458520 lisp optional guile-gnutls_3.7.9-2+deb12u7_s390x.deb
 df7a01e657b5c51851a0d945dc4923cf 89988 debug optional libgnutls-dane0-dbgsym_3.7.9-2+deb12u7_s390x.deb
 61ba9525772399285129f347bb4eced6 405476 libs optional libgnutls-dane0_3.7.9-2+deb12u7_s390x.deb
 5825aa0c44c1e8e75b83ad144bcdd378 91036 debug optional libgnutls-openssl27-dbgsym_3.7.9-2+deb12u7_s390x.deb
 e34687fd95741527e420954f5823f36a 405608 libs optional libgnutls-openssl27_3.7.9-2+deb12u7_s390x.deb
 2e99a30b9f7bd4cad4c80a43f5b0cfb9 1229984 libdevel optional libgnutls28-dev_3.7.9-2+deb12u7_s390x.deb
 6b8f161370c835490fbb2f7fae2beba5 1959080 debug optional libgnutls30-dbgsym_3.7.9-2+deb12u7_s390x.deb
 779905172fd886cb15c563602c7ea788 1291916 libs optional libgnutls30_3.7.9-2+deb12u7_s390x.deb
 c01d523917314d8fec3e2db5e0c20bbf 48304 debug optional libgnutlsxx30-dbgsym_3.7.9-2+deb12u7_s390x.deb
 fa22aaaeb9ddd179911bda3d6ca3c36b 13676 libs optional libgnutlsxx30_3.7.9-2+deb12u7_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=dwTE
-----END PGP SIGNATURE-----