<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">
<html lang="en">
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
<title>
GitLab
</title>
<style>img {
max-width: 100%; height: auto;
}
</style>
</head>
<body>
<div class="content">
<h3>
Salvatore Bonaccorso pushed to branch master
at <a href="https://salsa.debian.org/security-tracker-team/security-tracker">Debian Security Tracker / security-tracker</a>
</h3>
<h4>
Commits:
</h4>
<ul>
<li>
<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/3527be5e9426814180cf2983b91e90b7a84e4d8a">3527be5e</a></strong>
<div>
<span>by Salvatore Bonaccorso</span>
<i>at 2018-11-17T14:59:20Z</i>
</div>
<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Track CVE-2018-10846/gnutls28 as fixed in unstable and stable
This is not fully correct but upstream does not plan to do further
changes. The full set of changes needed to fix CVE-2018-10846 would be
as in the upstream merge request
https://gitlab.com/gnutls/gnutls/merge_requests/657 .
Those changes were backported (as possible) for 3.5.x ans 3.3.x as with
3.5.19 and 3.3.30 respectively.
Respective merge requests:
https://gitlab.com/gnutls/gnutls/merge_requests/663 (3_5_X)
https://gitlab.com/gnutls/gnutls/merge_requests/676 (3_3_X)
The stable upload done as 3.5.8-5+deb9u4 contains all those changes as
proposed for in MR663.
</pre>
</li>
</ul>
<h4>1 changed file:</h4>
<ul>
<li class="file-stats">
<a href="#4716ef5aa8f2742228ba3b3633215c8b808565e3">
data/CVE/list
</a>
</li>
</ul>
<h4>Changes:</h4>
<li id="4716ef5aa8f2742228ba3b3633215c8b808565e3">
<a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/3527be5e9426814180cf2983b91e90b7a84e4d8a#4716ef5aa8f2742228ba3b3633215c8b808565e3"><strong>data/CVE/list</strong></a>
<hr>
No preview for this file type
<br>
</li>
</div>
<div class="footer" style="margin-top: 10px;">
<p style="font-size: small; color: #777777;">
—
<br>
<a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/3527be5e9426814180cf2983b91e90b7a84e4d8a">View it on GitLab</a>.
<br>
You're receiving this email because of your account on salsa.debian.org.
If you'd like to receive fewer emails, you can
adjust your notification settings.
<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Commit","url":"https://salsa.debian.org/security-tracker-team/security-tracker/commit/3527be5e9426814180cf2983b91e90b7a84e4d8a"}}</script>
</p>
</div>
</body>
</html>