GNUTLS-SA-2013-1 (lucky thirteen) CVE-2013-0169 CVE-2013-1619

Andreas Metzler ametzler at downhill.at.eu.org
Thu Feb 7 11:03:33 UTC 2013


On 2013-02-06 Thijs Kinkhorst <thijs at debian.org> wrote:
[...]
> Thanks for the detailed information. We were aware of the issue. Please
> keep us posted on the fixed status of the variants in the various Debian
> suites.

Short heads up:

Package  dist      Version up to     fixed in
-----------------+----------------+----------------------------------
gnutls26 exp       2.12.22-1         2.12.23-1
gnutls26 unstable  2.12.20-3         2.12.20-4
gnutls26 testing   2.12.20-3         2.12.20-4
gnutls26 stable    2.8.6-1+squeeze2   -
gnutls28 exp       3.1.6-1           3.1.7-1 (currently in NEW)
gnutls28 unstable  3.0.22-2          3.0.22-3
gnutls28 testing   3.0.20-3          I have asked d-r whether 3.0.22-3
                                     might propagate or whether they need
                                     a tpu upload of 3.0.20 instead.
gnutls28 stable    N/A               N/A

cu andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'



More information about the Pkg-gnutls-maint mailing list