gnutls28_3.7.9-2+deb12u6_source.changes ACCEPTED into oldstable-proposed-updates->oldstable-new

[Debian FTP Masters]

Thank you for your contribution to Debian.

Mapping oldstable-security to oldstable-proposed-updates.

Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 14 Feb 2026 15:49:14 +0100
Source: gnutls28
Architecture: source
Version: 3.7.9-2+deb12u6
Distribution: bookworm-security
Urgency: high
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler at debian.org>
Closes: 1121146
Changes:
 gnutls28 (3.7.9-2+deb12u6) bookworm-security; urgency=high
 .
   * Add patch for CVE-2025-9820 / GNUTLS-SA-2025-11-18 from 3.8.11.
     Closes: #1121146
   * libgnutls: Fix name constraint processing performance issue
     Verifying certificates with pathological amounts of name constraints
     could lead to a denial of service attack via resource exhaustion.
     Reworked processing algorithms exhibit better performance
     characteristics. Reported by Tim Scheckenbach.
     [Fixes: GNUTLS-SA-2026-02-09-2, CVSS: medium] [CVE-2025-14831]
Checksums-Sha1:
 8a9c167a10fea0cb0bb22b023d31f673c185e44f 3421 gnutls28_3.7.9-2+deb12u6.dsc
 76432078bc404a2b21688b18b763992ca5ffe4e8 129728 gnutls28_3.7.9-2+deb12u6.debian.tar.xz
 a67395180d74fbeddec01ba869d06abe2a50f826 7750 gnutls28_3.7.9-2+deb12u6_source.buildinfo
Checksums-Sha256:
 d11d49acfd2529b80e514166c409a78d9eb047838609b0dc2b36e291e009c139 3421 gnutls28_3.7.9-2+deb12u6.dsc
 0aeb12e674609b71cbaad84f12c9b9a2746136edbd35f26a3df92ff8218fd58b 129728 gnutls28_3.7.9-2+deb12u6.debian.tar.xz
 193a67e265fdb0e31379f04f6649f7f21761639434cf454384367fa6e2900b2f 7750 gnutls28_3.7.9-2+deb12u6_source.buildinfo
Files:
 dcc71b78675370499678d80519a9cc3c 3421 libs optional gnutls28_3.7.9-2+deb12u6.dsc
 e8c8b0d9afa86ab66c19a908ff5ad49f 129728 libs optional gnutls28_3.7.9-2+deb12u6.debian.tar.xz
 037f199d3d930b7fc7f9553345ffb6a0 7750 libs optional gnutls28_3.7.9-2+deb12u6_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=C3qp
-----END PGP SIGNATURE-----

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-gnutls-maint/attachments/20260218/038c3c7c/attachment.sig>