From ftpmaster at ftp-master.debian.org  Sat Aug  1 09:51:16 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Sat, 01 Aug 2015 09:51:16 +0000
Subject: Processing of gnutls28_3.3.16-2_i386.changes
Message-ID: <E1ZLTRk-0002QY-DT@franck.debian.org>

gnutls28_3.3.16-2_i386.changes uploaded successfully to localhost
along with the files:
  gnutls28_3.3.16-2.dsc
  gnutls28_3.3.16-2.debian.tar.xz
  gnutls-bin_3.3.16-2_i386.deb
  gnutls-doc_3.3.16-2_all.deb
  guile-gnutls_3.3.16-2_i386.deb
  libgnutls-deb0-28_3.3.16-2_i386.deb
  libgnutls-openssl27_3.3.16-2_i386.deb
  libgnutls28-dbg_3.3.16-2_i386.deb
  libgnutls28-dev_3.3.16-2_i386.deb
  libgnutlsxx28_3.3.16-2_i386.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)


From ftpmaster at ftp-master.debian.org  Sat Aug  1 10:04:34 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Sat, 01 Aug 2015 10:04:34 +0000
Subject: gnutls28_3.3.16-2_i386.changes ACCEPTED into unstable
Message-ID: <E1ZLTec-0007XN-29@franck.debian.org>



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 01 Aug 2015 11:30:17 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: source i386 all
Version: 3.3.16-2
Distribution: unstable
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler at debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-deb0-28 - GNU TLS library - main runtime library
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dbg - GNU TLS library - debugger symbols
 libgnutls28-dev - GNU TLS library - development files
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.3.16-2) unstable; urgency=medium
 .
   * Refresh 40_no_more_ssl3.diff.
   * 45_As-server-don-t-try-to-send-extensions-we-didn-t-rec.patch
     46_safe-renegotiation-handle-case-where-client-didn-t-s.patch
     47_safe-renegotiation-simulate-receiving-the-extension-.patch
     Pull three patches from upstream GIT to fix issue with server side sending
     the status request extension even when not requested.
     <http://article.gmane.org/gmane.network.gnutls.general/3929>
Checksums-Sha1:
 42e34bc593427b98eda62707ca92bf99ab76f82a 2920 gnutls28_3.3.16-2.dsc
 fe8ccb259066ef1dfe342434c9a4bf5423d2b544 87020 gnutls28_3.3.16-2.debian.tar.xz
 98cb1938088d0f456ba7ec2adbd1190e37090952 319906 gnutls-bin_3.3.16-2_i386.deb
 f6025af23d98f445f13511fffe946264717ea903 3654372 gnutls-doc_3.3.16-2_all.deb
 08e9e4741b00ed242ed0db1ba7a3b068c0da3192 192760 guile-gnutls_3.3.16-2_i386.deb
 81910c3789a3ccc61e9576db2835c8d950810563 735788 libgnutls-deb0-28_3.3.16-2_i386.deb
 cdb8c6f52150746cd23617b1f2633d6056a0b22b 159978 libgnutls-openssl27_3.3.16-2_i386.deb
 da4a121ee9938e2d5254f21fa1d3608948426651 2090664 libgnutls28-dbg_3.3.16-2_i386.deb
 371628cc7f973b71f46054b72103b8b3bc4641d5 708104 libgnutls28-dev_3.3.16-2_i386.deb
 23e637b54ca0d1ee6c8dc13f2ed80891348aa1d0 15358 libgnutlsxx28_3.3.16-2_i386.deb
Checksums-Sha256:
 9491a29c3f73cefeed0c46e1e4362d6f8f3d3d353e1e0788acfe2d71fb07c15f 2920 gnutls28_3.3.16-2.dsc
 00e67504c635a6363e408183a9d5cc1745091da5c61f6e0c8ed5a4477151cbf7 87020 gnutls28_3.3.16-2.debian.tar.xz
 b3800374065a2e8275596e16affc67d71770aa92dfd1f2f98da071698e4a0ba4 319906 gnutls-bin_3.3.16-2_i386.deb
 ac92a4ea74f663548162692534d5ca8528819c2558c04a0f88e3b8a25b9dc48a 3654372 gnutls-doc_3.3.16-2_all.deb
 8adbdf005600f9953a6a4627c554418275d4f88338d3ced19b45b3fb6d362739 192760 guile-gnutls_3.3.16-2_i386.deb
 e836c6a46ee6d6caa42e27b44f3a44897d1dd423cfbaa7ded62609942382644b 735788 libgnutls-deb0-28_3.3.16-2_i386.deb
 3a52a7152f5b1de60569823f4bab95d4c662b3e5f7765cc02282de02a79259d8 159978 libgnutls-openssl27_3.3.16-2_i386.deb
 ba1c754e5b897589f5911811c59b9a93a3f59c4d8472ea8bba84279cdea400d2 2090664 libgnutls28-dbg_3.3.16-2_i386.deb
 a92e8e5c99f68b637b6ace82b2706f2d5ec86c8c4cb8c7b2040a748bb2b7128e 708104 libgnutls28-dev_3.3.16-2_i386.deb
 3913196f1958feb9c23139c4ce3ef47147f19e8c1bab9bcebd0ee7e96222bffd 15358 libgnutlsxx28_3.3.16-2_i386.deb
Files:
 b5b5617a48dec7e6a89af692cf85effe 2920 libs optional gnutls28_3.3.16-2.dsc
 0f1c9f99776b2df8f836587950fb525f 87020 libs optional gnutls28_3.3.16-2.debian.tar.xz
 6c3de1dc3c87cff501711e785ce4202f 319906 net optional gnutls-bin_3.3.16-2_i386.deb
 6cbb64171f4d6b02dceb2a55c76c771f 3654372 doc optional gnutls-doc_3.3.16-2_all.deb
 03b235f909c9e0ddde642a51cf3b5234 192760 lisp optional guile-gnutls_3.3.16-2_i386.deb
 61bd7af109675f47c4cc94ba6e137cfc 735788 libs standard libgnutls-deb0-28_3.3.16-2_i386.deb
 8b4d4185832a9eb26c812b86f568e6ad 159978 libs standard libgnutls-openssl27_3.3.16-2_i386.deb
 64db0fea17225cb6eb57d9ba52c92043 2090664 debug extra libgnutls28-dbg_3.3.16-2_i386.deb
 731fe564e971e50c365e2d2d2b385213 708104 libdevel optional libgnutls28-dev_3.3.16-2_i386.deb
 4a10393cec20a16c0421e3fa2de30dc6 15358 libs extra libgnutlsxx28_3.3.16-2_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJVvJWdAAoJEKVPAYVDghSEkfEP+QGDEfkjLCTw7246MDnq3hM1
75r3W3K8zgqATZycOLaE2woONPX2+jppLCVqkQdVOsOKwEfxVAlS5PqkKe16cF/h
95hB/Ysbtv6OVIM62CHRs6t/qftLxGt8HRzc6UQMNc9aOw6ggCGIc2jjM2WFXmnk
wqeM4AqEzfc6FBGTkWB/FL08V90dYrqFJHeN+0Cs28O9IzzUD3OzEjTs5QExlLSD
wueCA2JG5LDOfWLJA86l35KEQ4XpPyPbSHr7L9H9qdFE6frjefDEAxYeEWNRN1zw
DPJ9WlXclJqYsvZn5RaiNN4dmoyo+5d+XQa9Im+utKCaLPoKYI3daaM5UAN2YGH5
Dt1a9d27240aZAM+BtesAxPdDG4fZvvSMWiwPpnli8kOWkXHYq0dRhDm8dRA5kDf
R5sP3uNxf8NyGfmz5hBKg2A+KS28sFNTNe57a9ir7NkOYojRfg37irE8tPrNRe6U
G5jR6j0JsGO074VtOw+kN9VwrTirnEZmuNKrlsKg7gpX+7MyGr+WRbB6wkqNHn+C
4/kX2ZuwbTQWQnw3pJW+WMauAymoYBSHclgtDpGpggpKmlsEuhnHTVFPmW2MMBzf
zoi5fFxXnjD8wftZG6NN5ZW6CF/ub1G9YJP/PXYj7g5EsqfkdOjitJgX0ykcx+Gh
cMRF63S5zCiV8Oxmd47N
=qek2
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From zhongjun at asia.com  Sat Aug  1 15:05:56 2015
From: zhongjun at asia.com (zhongjun at asia.com)
Date: Sat, 01 Aug 2015 17:05:56 +0200
Subject: Greetings
Message-ID: <201508011506.t71F34mO007080@raq04.webkitchen.net>

Good day,

I need a foreign partner for a mutual business proposal ,which relates to the transfer of a large sum of money to a foreign account, as the recipient of the funds. Everything about this transaction will be done legally without any bridge of financial authority both in my Country and yours.I wil indulge you to observe utmost discretion in all matters relating to this issue. If you are interested, please reply back via my private email address written below, I will give you more information about myself with the financial institution I represented and actual amounts involves regarding the project as soon as I receive your positive response.

Private email:zhong.fu at fuzhongjun.net

Friendly greeting,

Executive Director.

China Bank.


From 12stelle70 at libero.it  Mon Aug  3 16:13:46 2015
From: 12stelle70 at libero.it (ROBERTO)
Date: Mon, 3 Aug 2015 17:13:46 +0100
Subject: =?utf-8?B?Qm9uam91ciA6IFRvdXRlIG1hIGNvbnNpZMOpcmF0aW9u?=
Message-ID: <1438618426.11628.YahooMailBasic@web133103.mail.ir2.yahoo.com>

Bonjour,

Je viens, par le pr?sent message, vous proposer une affaire tr?s lucrative et aussi solliciter votre soutien pour atteindre mon objectif.

En r?sum?, Il s'agit d'une op?ration de transfert d?une importante somme d?argent qui n?cessite l?intervention d?une personne ?trang?re avant d?aboutir. Cependant, j?aimerais solliciter votre assistance pour favoriser ce transfert et apr?s nous aurons ensuite ? partager cet argent suivant un pourcentage que nous arr?terons de commun accord.

Certes, nous ne nous connaissons pas avant mais que cela ne soit pas une raison pour vous de rester perplexe, soyez rassur? qu?il ne s?agit pas d?une affaire ? caract?re pr?judiciable.  Vous n?aurez pas d?ennuis, soyez en s?r.

Par ailleurs, dans l??ventualit? o? ma proposition retiendrait votre attention n?h?sitez pas ? me contacter de mani?re ? avoir de plus amples explications.

Cordialement,


From jsofia59 at hotmail.com  Thu Aug  6 09:57:18 2015
From: jsofia59 at hotmail.com (Sofia Johnson)
Date: Thu, 6 Aug 2015 18:57:18 +0900 (JST)
Subject: From Ms. Sofia Johnson 
Message-ID: <749108.29204.qm@web100919.mail.kks.yahoo.co.jp>

>From Ms. Sofia Johnson
Abidjan,Ivory Coast.

Good day my dear,
In confidence,i have to introduce myself for i am Ms. Sofia Johnson .21 years old,I am the only child of late Mr & Mrs. Yve Johnso. I prayed before contacting you, please for God sake do not see my mail as embrassment as we do not know each other.

I wish to request for your assistance in my efforts to procure the transfer of my inherited money for investment ventures under your care and directive,while i continue my education of there in your country. I inherited Six Million,Four Hundred Thousand Dollars ($6,400,000.00) here in my name with one of the prime bank in my country and I will require your assistance in receiving the transfer of my inherited money in your local account for investment purposes,as it is my wish to come over to your country to further my education while you take care of the investment of the money.

Please i am an orphane and i need your assistance to transfer my inherited money to your country and also your assistance to secure a nice school for me in your country where I will continue my education

Please I am waiting to hear from you soonest.
Yours sincerely,
Ms. Sofia Johnson
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150806/62368e76/attachment.html>

From cristian.inzunza at gendarmeria.cl  Thu Aug  6 17:06:38 2015
From: cristian.inzunza at gendarmeria.cl (Teresa Roman)
Date: Thu, 06 Aug 2015 18:06:38 +0100
Subject: (no subject)
Message-ID: <9e4706699bdd9ad68dc3275967e82f9e@gendarmeria.cl>



-- 
Morning


From marciunne at hotmail.com  Fri Aug  7 10:43:24 2015
From: marciunne at hotmail.com (LIMA DOROTHEE)
Date: Fri, 7 Aug 2015 03:43:24 -0700
Subject: OFFRE DE PRET
Message-ID: <1438944204.43294.YahooMailBasic@web122305.mail.ne1.yahoo.com>


Mr & Mme

Nous sommes un Etablissement de Finance G?n?rale et ce message s'adresse aux particuliers, aux pauvres, ou ? tous ceux qui sont dans le besoin d'un pr?t particulier pour reconstruire leur vie. Vous ?tes ? la recherche de pr?t pour soit relancer vos activit?s soit pour la r?alisation d'un projet mais votre dossier a ?t? rejet? ? la banque.

Nous sommes en mesure d?octroyer des pr?ts allant de 1.000 ? 2.000.000 Euros ? toutes personnes de bonne moralit? et capable de respecter les conditions.

Notre taux d?int?r?t est de 3 % l'an. Nous sommes disponibles ? satisfaire nos clients en un temps record. Nous contactez pour plus d'amples informations.

Cordialement,
La secr?taire
Mlle. LIMA Doroth?e


From andrea.leon at politica.gob.ec  Fri Aug  7 13:05:07 2015
From: andrea.leon at politica.gob.ec (Account Warning)
Date: Fri, 7 Aug 2015 08:05:07 -0500 (ECT)
Subject: Update Account
Message-ID: <230818508.3267247.1438952707229.JavaMail.root@politica.gob.ec>


This is to inform you that your password will expire in 3 days, please update your account or your new mails will remain pending.

Note: Open http://www.portal853.zyro.com

Open to update now
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150807/b15e8859/attachment.html>

From noreply at release.debian.org  Fri Aug  7 16:39:09 2015
From: noreply at release.debian.org (Debian testing watch)
Date: Fri, 07 Aug 2015 16:39:09 +0000
Subject: gnutls28 3.3.16-2 MIGRATED to testing
Message-ID: <E1ZNkfl-0006R6-Dh@franck.debian.org>

FYI: The status of the gnutls28 source package
in Debian's testing distribution has changed.

  Previous version: 3.3.16-1
  Current version:  3.3.16-2

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.


From carnil at debian.org  Mon Aug 10 09:54:25 2015
From: carnil at debian.org (Salvatore Bonaccorso)
Date: Mon, 10 Aug 2015 11:54:25 +0200
Subject: Bug#795068: gnutls28: double free flaw in certificate DN decoding
 (GNUTLS-SA-2015-3)
Message-ID: <20150810095425.5605.92345.reportbug@eldamar.local>

Source: gnutls28
Version: 3.3.8-1
Severity: important
Tags: security upstream fixed-upstream

Hi

See http://www.gnutls.org/security.html#GNUTLS-SA-2015-3 and
https://bugzilla.redhat.com/show_bug.cgi?id=1251902 .

Regards,
Salvatore


From ftpmaster at ftp-master.debian.org  Mon Aug 10 18:09:43 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Mon, 10 Aug 2015 18:09:43 +0000
Subject: Processing of gnutls28_3.3.17-1_i386.changes
Message-ID: <E1ZOrW3-0000xm-Bm@franck.debian.org>

gnutls28_3.3.17-1_i386.changes uploaded successfully to localhost
along with the files:
  gnutls28_3.3.17-1.dsc
  gnutls28_3.3.17.orig.tar.xz
  gnutls28_3.3.17-1.debian.tar.xz
  gnutls-bin_3.3.17-1_i386.deb
  gnutls-doc_3.3.17-1_all.deb
  guile-gnutls_3.3.17-1_i386.deb
  libgnutls-deb0-28_3.3.17-1_i386.deb
  libgnutls-openssl27_3.3.17-1_i386.deb
  libgnutls28-dbg_3.3.17-1_i386.deb
  libgnutls28-dev_3.3.17-1_i386.deb
  libgnutlsxx28_3.3.17-1_i386.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)


From ametzler at bebt.de  Mon Aug 10 18:12:14 2015
From: ametzler at bebt.de (Andreas Metzler)
Date: Mon, 10 Aug 2015 20:12:14 +0200
Subject: Bug#795068: gnutls28: double free flaw in certificate DN decoding
 (GNUTLS-SA-2015-3)
In-Reply-To: <20150810095425.5605.92345.reportbug@eldamar.local>
References: <20150810095425.5605.92345.reportbug@eldamar.local>
Message-ID: <20150810181214.GB5168@downhill.g.la>

On 2015-08-10 Salvatore Bonaccorso <carnil at debian.org> wrote:
> Source: gnutls28
> Version: 3.3.8-1
> Severity: important
> Tags: security upstream fixed-upstream

> Hi

> See http://www.gnutls.org/security.html#GNUTLS-SA-2015-3 and
> https://bugzilla.redhat.com/show_bug.cgi?id=1251902 .

Hello Salvatore,

thanks for the heads-up. Do you (security) plan to issue a DSA for
stable?

cu Andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'


From ftpmaster at ftp-master.debian.org  Mon Aug 10 18:19:32 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Mon, 10 Aug 2015 18:19:32 +0000
Subject: gnutls28_3.3.17-1_i386.changes ACCEPTED into unstable
Message-ID: <E1ZOrfY-0001tc-Nf@franck.debian.org>



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 10 Aug 2015 19:48:11 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: source i386 all
Version: 3.3.17-1
Distribution: unstable
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler at debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-deb0-28 - GNU TLS library - main runtime library
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dbg - GNU TLS library - debugger symbols
 libgnutls28-dev - GNU TLS library - development files
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Closes: 795068
Changes:
 gnutls28 (3.3.17-1) unstable; urgency=medium
 .
   * New upstream version.
    + Drop superfluous patches.
     (45_As-server-don-t-try-to-send-extensions-we-didn-t-rec.patch,
      46_safe-renegotiation-handle-case-where-client-didn-t-s.patch,
      47_safe-renegotiation-simulate-receiving-the-extension-.patch)
    + GNUTLS_PKCS11_OBJ_FLAG_NO_STORE_PUBKEY added to gnutls_pkcs11_obj_flags,
      bump dependency info for functions taking it as argument or returning it.
    + Bump dependency info on private symbols.
    + Fixes double free in DN decoding [GNUTLS-SA-2015-3]. Closes: #795068
Checksums-Sha1:
 084afd1048b227434f126f0ff5735b610857b27b 2920 gnutls28_3.3.17-1.dsc
 42d5b59f65e38eb2177c6ec4c3f8193f5ec927ff 6298240 gnutls28_3.3.17.orig.tar.xz
 0dfc797484e7867c21f0df2190623d5718fbee8b 85480 gnutls28_3.3.17-1.debian.tar.xz
 d070a90b9b795aeb72fee3757b5472b989a72852 321712 gnutls-bin_3.3.17-1_i386.deb
 3372db8f79c1433734735fc61bd6b92b2a7b323f 3655418 gnutls-doc_3.3.17-1_all.deb
 75435f942d915152c5448d47cfdd0c711206f730 193014 guile-gnutls_3.3.17-1_i386.deb
 d280abea08a33260b30c2e9c707569a3bbd14923 736130 libgnutls-deb0-28_3.3.17-1_i386.deb
 d035af908d206474abf404f8b35907116525e2e8 160500 libgnutls-openssl27_3.3.17-1_i386.deb
 218615fc36843132109f8fe2cddc765e6fb042d2 2090708 libgnutls28-dbg_3.3.17-1_i386.deb
 1463f408dfc3d9bb3ab79813062c720a51925c10 708910 libgnutls28-dev_3.3.17-1_i386.deb
 8547d35e9acd90a6078030bdf5023eef877d0a7b 15396 libgnutlsxx28_3.3.17-1_i386.deb
Checksums-Sha256:
 c76750756a549fed8657c315eeac17b584d048db2818afdec4ffe469b74319fe 2920 gnutls28_3.3.17-1.dsc
 dd25e48f2f89975db5f22262b085dac725a165bf51a967a02abbf409fc856f35 6298240 gnutls28_3.3.17.orig.tar.xz
 de46c8fbc2febe0e0b0c6f4a37dc72f731f69664bed02d0a9ab93d36dd83222c 85480 gnutls28_3.3.17-1.debian.tar.xz
 8255d8164d86c308010395bdd94c3b2cf2e0149bdb46346b04b756312fa0cca6 321712 gnutls-bin_3.3.17-1_i386.deb
 b84d829d0a96e66c1ba96c74feb2786885eb9c7bc7d723c47e4009463ae898ab 3655418 gnutls-doc_3.3.17-1_all.deb
 8bc2dd4eaf8d3b371d04e6ce43e7659f0a92b2be77d6c675055144837eaaff1b 193014 guile-gnutls_3.3.17-1_i386.deb
 75d0ec41823222ac49092c0e177703f36d2c192027c28c5d1176d183e1e908af 736130 libgnutls-deb0-28_3.3.17-1_i386.deb
 12660b30e495569793fbc5b720d3678f25bfeae22f5b2cac7a0c34a55bb95103 160500 libgnutls-openssl27_3.3.17-1_i386.deb
 92360cf14863b990eb1ea450fc42610e72bf942bc84694ec0f2517f1af3890fb 2090708 libgnutls28-dbg_3.3.17-1_i386.deb
 7b2011913cb7ad1dbbbe06b014db71807238a3eb064c325bc6bbf8723d9d766b 708910 libgnutls28-dev_3.3.17-1_i386.deb
 6e2c21c3222fd5629c324c13d73b270a21f8c1bc8eaf4e909179f97469e6645e 15396 libgnutlsxx28_3.3.17-1_i386.deb
Files:
 a14bd04f7675ee45ed6419fa9a1768d4 2920 libs optional gnutls28_3.3.17-1.dsc
 70df63105ca3f86cf5d3b56da9f5b3cd 6298240 libs optional gnutls28_3.3.17.orig.tar.xz
 125b388f9c981a3768cbd62eff1c5e7c 85480 libs optional gnutls28_3.3.17-1.debian.tar.xz
 32925de2a92fb56244c4df0866b39a4d 321712 net optional gnutls-bin_3.3.17-1_i386.deb
 e739117b377ad95b208e5237d4b9912f 3655418 doc optional gnutls-doc_3.3.17-1_all.deb
 e365909333aaefd7f6f3937d6af23966 193014 lisp optional guile-gnutls_3.3.17-1_i386.deb
 c9fab3d6cd8b9dee2bc6fb89dc862b74 736130 libs standard libgnutls-deb0-28_3.3.17-1_i386.deb
 2df51183ea67f78261b3ee8cc29e93e8 160500 libs standard libgnutls-openssl27_3.3.17-1_i386.deb
 539f8b6259bb72130ca4771566288796 2090708 debug extra libgnutls28-dbg_3.3.17-1_i386.deb
 c9d6f5ab84c47d1647360373ce176ef7 708910 libdevel optional libgnutls28-dev_3.3.17-1_i386.deb
 3db9ea6b65a76b7a847ef208b05d8a83 15396 libs extra libgnutlsxx28_3.3.17-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=ixaM
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From owner at bugs.debian.org  Mon Aug 10 18:21:09 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Mon, 10 Aug 2015 18:21:09 +0000
Subject: Bug#795068: marked as done (gnutls28: double free flaw in
 certificate DN decoding (GNUTLS-SA-2015-3))
References: <E1ZOrfY-0001tn-PK@franck.debian.org>
 <20150810095425.5605.92345.reportbug@eldamar.local>
Message-ID: <handler.795068.D795068.143923077421532.ackdone@bugs.debian.org>

Your message dated Mon, 10 Aug 2015 18:19:32 +0000
with message-id <E1ZOrfY-0001tn-PK at franck.debian.org>
and subject line Bug#795068: fixed in gnutls28 3.3.17-1
has caused the Debian Bug report #795068,
regarding gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner at bugs.debian.org
immediately.)


-- 
795068: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795068
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
-------------- next part --------------
An embedded message was scrubbed...
From: Salvatore Bonaccorso <carnil at debian.org>
Subject: gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3)
Date: Mon, 10 Aug 2015 11:54:25 +0200
Size: 1778
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150810/345f1e94/attachment.mht>
-------------- next part --------------
An embedded message was scrubbed...
From: Andreas Metzler <ametzler at debian.org>
Subject: Bug#795068: fixed in gnutls28 3.3.17-1
Date: Mon, 10 Aug 2015 18:19:32 +0000
Size: 8291
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150810/345f1e94/attachment-0001.mht>

From ftpmaster at ftp-master.debian.org  Tue Aug 11 18:36:48 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Tue, 11 Aug 2015 18:36:48 +0000
Subject: Processing of gnutls28_3.4.4.1-1_i386.changes
Message-ID: <E1ZPEPo-0005uQ-B7@franck.debian.org>

gnutls28_3.4.4.1-1_i386.changes uploaded successfully to localhost
along with the files:
  gnutls28_3.4.4.1-1.dsc
  gnutls28_3.4.4.1.orig.tar.xz
  gnutls28_3.4.4.1-1.debian.tar.xz
  gnutls-bin_3.4.4.1-1_i386.deb
  gnutls-doc_3.4.4.1-1_all.deb
  guile-gnutls_3.4.4.1-1_i386.deb
  libgnutls-openssl27_3.4.4.1-1_i386.deb
  libgnutls28-dev_3.4.4.1-1_i386.deb
  libgnutls30-dbg_3.4.4.1-1_i386.deb
  libgnutls30_3.4.4.1-1_i386.deb
  libgnutlsxx28_3.4.4.1-1_i386.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)


From ftpmaster at ftp-master.debian.org  Tue Aug 11 18:49:01 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Tue, 11 Aug 2015 18:49:01 +0000
Subject: gnutls28_3.4.4.1-1_i386.changes ACCEPTED into experimental
Message-ID: <E1ZPEbd-0006yN-16@franck.debian.org>



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 11 Aug 2015 20:12:46 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls30 libgnutls30-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: source i386 all
Version: 3.4.4.1-1
Distribution: experimental
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler at debian.org>
Description:
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dev - GNU TLS library - development files
 libgnutls30 - GNU TLS library - main runtime library
 libgnutls30-dbg - GNU TLS library - debugger symbols
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Closes: 795068
Changes:
 gnutls28 (3.4.4.1-1) experimental; urgency=medium
 .
   * New upstream version.
     + GNUTLS_PKCS11_OBJ_FLAG_NO_STORE_PUBKEY added to gnutls_pkcs11_obj_flags,
       bump dependency info for functions taking it as argument or returning it.
     + Bump dependency info on private symbols.
     + Update debian/copyright.
     + Fixes double free in DN decoding [GNUTLS-SA-2015-3]. Closes: #795068
Checksums-Sha1:
 182fbadd3a860e9d46ba1c892f5d03c4bed3e9ea 2896 gnutls28_3.4.4.1-1.dsc
 f7fafcfa56ce05959431d47fe0f08a260f237ed1 6618988 gnutls28_3.4.4.1.orig.tar.xz
 4d8ba1bf6f4e97257586443e53b8852e5ff5ac40 85608 gnutls28_3.4.4.1-1.debian.tar.xz
 c90bdde81a2a27cee79c8bd95c10e73ae1a94e66 364392 gnutls-bin_3.4.4.1-1_i386.deb
 fc5fd6738c48490b838b67142a5d1584c27ea16c 3851138 gnutls-doc_3.4.4.1-1_all.deb
 f099f8ad2d0aa5c8088819583b4fa5c0b4595d05 226678 guile-gnutls_3.4.4.1-1_i386.deb
 a976268e326dd5efac62cae23ef28ae7c58fcc1b 194624 libgnutls-openssl27_3.4.4.1-1_i386.deb
 07e7c48515f80804e7bbaec880e78889b3992b56 772648 libgnutls28-dev_3.4.4.1-1_i386.deb
 fea0ebb4a90f57dbf54400293808b8b5f3dd5459 2215996 libgnutls30-dbg_3.4.4.1-1_i386.deb
 5c8dec19526d1e554e627336a164d13492f86c4b 791260 libgnutls30_3.4.4.1-1_i386.deb
 6d00b74d45302f4ab872a5343698311030ff0362 14530 libgnutlsxx28_3.4.4.1-1_i386.deb
Checksums-Sha256:
 92c67e7209fea1babe43e6e8f4f1bf636f327e5587df4bd2c10588bfa018deec 2896 gnutls28_3.4.4.1-1.dsc
 525bd799031948c069fa5ab048c3588592a663a881d2034484782ba73a29c3f5 6618988 gnutls28_3.4.4.1.orig.tar.xz
 eee81d8b5e3f6546f851adcb64d9580a505ee55417daaf575c1f2337f3944245 85608 gnutls28_3.4.4.1-1.debian.tar.xz
 f3c3603add0f15219b91eb1667d32b9a12de7e6def7bf8538de90c69222fbcab 364392 gnutls-bin_3.4.4.1-1_i386.deb
 adce5b94d150a801a5f7c39b279118c5b635943dbad1fe545c78a48a04a0804d 3851138 gnutls-doc_3.4.4.1-1_all.deb
 054094f978bad568deee38e3739afa1c6a0dbbe806fe0eb306b27ae2fefb82bd 226678 guile-gnutls_3.4.4.1-1_i386.deb
 3cbe96bb16dbd87f2859661808c5485d056086b8ff933cf0a5d229b7ccc3ee81 194624 libgnutls-openssl27_3.4.4.1-1_i386.deb
 ca963bd3a8f5b3a15c1ed237ce2269b53b55d268a01aa5b2ec6133afde2956c4 772648 libgnutls28-dev_3.4.4.1-1_i386.deb
 fe30b91d57251a843015079af08355ffbb80c07c1cda14d4cfd3f6d3f23a56d8 2215996 libgnutls30-dbg_3.4.4.1-1_i386.deb
 e6e7e7372a5aa1e7b86f98a1179d3a6cf0bb7d371304dac76f7caafb83e4c2aa 791260 libgnutls30_3.4.4.1-1_i386.deb
 49794c59cbac72ae6090f69bb5f02a4656955b3b2ddab3bdc7641a5dc98d4502 14530 libgnutlsxx28_3.4.4.1-1_i386.deb
Files:
 7b0164df5baefb91c478c9870068ff2d 2896 libs optional gnutls28_3.4.4.1-1.dsc
 474efaba6fd6c6c6c0ebac2a3f431946 6618988 libs optional gnutls28_3.4.4.1.orig.tar.xz
 e3cc80bfc742ce76084011b8526c4791 85608 libs optional gnutls28_3.4.4.1-1.debian.tar.xz
 1ae4c8cee67f2ddda7ef1d065ed6e784 364392 net optional gnutls-bin_3.4.4.1-1_i386.deb
 f21691e6f66b9d5b864f1a7e7ccd594c 3851138 doc optional gnutls-doc_3.4.4.1-1_all.deb
 78dd1fc324536c18a2b79c710644186f 226678 lisp optional guile-gnutls_3.4.4.1-1_i386.deb
 681375d1d88eba687fd262c504609aac 194624 libs standard libgnutls-openssl27_3.4.4.1-1_i386.deb
 ef784b2fb7f18957615e20b2b26cd4ea 772648 libdevel optional libgnutls28-dev_3.4.4.1-1_i386.deb
 a6fc739b34ff90d195c4b76967aedf1d 2215996 debug extra libgnutls30-dbg_3.4.4.1-1_i386.deb
 badcdb93d1806f913a0e0f823d427d87 791260 libs standard libgnutls30_3.4.4.1-1_i386.deb
 ce9d492823b133b12dfbeff7acf9bf99 14530 libs extra libgnutlsxx28_3.4.4.1-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=boZu
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From owner at bugs.debian.org  Tue Aug 11 18:51:12 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Tue, 11 Aug 2015 18:51:12 +0000
Subject: Bug#795068: marked as done (gnutls28: double free flaw in
 certificate DN decoding (GNUTLS-SA-2015-3))
References: <E1ZPEbd-0006yX-2i@franck.debian.org>
 <20150810095425.5605.92345.reportbug@eldamar.local>
Message-ID: <handler.795068.D795068.143931894413499.ackdone@bugs.debian.org>

Your message dated Tue, 11 Aug 2015 18:49:01 +0000
with message-id <E1ZPEbd-0006yX-2i at franck.debian.org>
and subject line Bug#795068: fixed in gnutls28 3.4.4.1-1
has caused the Debian Bug report #795068,
regarding gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner at bugs.debian.org
immediately.)


-- 
795068: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795068
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
-------------- next part --------------
An embedded message was scrubbed...
From: Salvatore Bonaccorso <carnil at debian.org>
Subject: gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3)
Date: Mon, 10 Aug 2015 11:54:25 +0200
Size: 1778
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150811/76cd1eb8/attachment.mht>
-------------- next part --------------
An embedded message was scrubbed...
From: Andreas Metzler <ametzler at debian.org>
Subject: Bug#795068: fixed in gnutls28 3.4.4.1-1
Date: Tue, 11 Aug 2015 18:49:01 +0000
Size: 8085
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150811/76cd1eb8/attachment-0001.mht>

From dkg at fifthhorseman.net  Tue Aug 11 23:51:35 2015
From: dkg at fifthhorseman.net (Daniel Kahn Gillmor)
Date: Tue, 11 Aug 2015 19:51:35 -0400
Subject: gpgv udebs
Message-ID: <877fp1o03c.fsf@alice.fifthhorseman.net>

hi debian installer folks--

this message is not urgent, just a heads-up to the debian installer
folks (and the pkg-gnutls folks, since libksba comes up later) from a
gnupg maintainer.  (i don't think i'm subscribed to debian-boot, please
keep me cc'ed!)

i believe the installer relies on gpgv for archive manifest signature
verification.  we have gpgv-udeb for that purpose, i think.

It's likely that at some point (i'm hoping before stretch) we'll want to
move most of our GnuPG reliance to the 2.1 branch, since that will allow
us to take advantage of stronger, smaller, faster cryptography and will
also help to keep our tools aligned with where upstream's main
development focus is.

As a result, i'd like to consider moving the gpgv udeb over to the
gnupg2 package sometime soon.

gpgv2 has more dependencies than gpgv, though:

gpgv2 Depends: libbz2-1.0, libc6 (>= 2.14), libgcrypt20 (>= 1.6.1), libgpg-error0 (>= 1.14), libksba8 (>= 1.2.0), zlib1g (>= 1:1.1.4)

 gpgv Depends: libbz2-1.0, libc6 (>= 2.14), zlib1g (>= 1:1.1.4)

so we're talking about adding three dependencies as udebs:

  libgcrypt20, libgpg-error0, libksba8

Of these three dependencies:

 * gpg-error is simple/small/trivial: i don't think it's particularly
   objectionable, and there's already a udeb for it.

 * libgcrypt is the actively-developed crypto library that the we want
   to rely on instead what's effectively an embedded stripped-down copy
   in gpgv, so i think this is an actively good dependency to add.
   libgcrypt also already has a udeb.

 * libksba8 is the X.509 and CMS support library used by GnuPG.  we
   probably don't strictly need this for the installer (our archive
   signatures use OpenPGP signatures and not CMS).  I can work on a
   stripped-down build of gpgv2 that doesn't have this dependency if we
   think that would be useful for minimizing the installer.
   Alternately, I can work with pkg-gnutls to add a udeb for libksba
   (we've already discussed the possibility of transferring the libksba
   from pkg-gnutls to pkg-gnupg)

let me know if you have any concerns, preferences, or questions about
this work, and if you have specific time windows that it would be good
to aim for.

Regards,

        --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 948 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150811/c7baf056/attachment.sig>

From kibi at debian.org  Wed Aug 12 00:39:23 2015
From: kibi at debian.org (Cyril Brulebois)
Date: Wed, 12 Aug 2015 02:39:23 +0200
Subject: gpgv udebs
In-Reply-To: <877fp1o03c.fsf@alice.fifthhorseman.net>
References: <877fp1o03c.fsf@alice.fifthhorseman.net>
Message-ID: <20150812003923.GA16508@mraw.org>

Hi all,

And thanks for getting in touch with us.

Daniel Kahn Gillmor <dkg at fifthhorseman.net> (2015-08-11):
> i believe the installer relies on gpgv for archive manifest signature
> verification.  we have gpgv-udeb for that purpose, i think.

That's the idea, yeah. Grepping through all of our packages ? see the
results below my signature; that's basically base-installer and
net-retriever which depend on gpgv-udeb.

For the record, last time we've seen changes in gpgv, that was in:
  https://lists.debian.org/debian-boot/2014/01/msg00129.html

which eventually led to: #753985. Skimming through it again, it seems
win32-loader was somewhat affected as well. Adding Didier in the loop
explicitly just to be on the safe side.

> It's likely that at some point (i'm hoping before stretch) we'll want
> to move most of our GnuPG reliance to the 2.1 branch, since that will
> allow us to take advantage of stronger, smaller, faster cryptography
> and will also help to keep our tools aligned with where upstream's
> main development focus is.
> 
> As a result, i'd like to consider moving the gpgv udeb over to the
> gnupg2 package sometime soon.

ACK.

> gpgv2 has more dependencies than gpgv, though:
> 
> gpgv2 Depends: libbz2-1.0, libc6 (>= 2.14), libgcrypt20 (>= 1.6.1), libgpg-error0 (>= 1.14), libksba8 (>= 1.2.0), zlib1g (>= 1:1.1.4)
> 
>  gpgv Depends: libbz2-1.0, libc6 (>= 2.14), zlib1g (>= 1:1.1.4)
> 
> so we're talking about adding three dependencies as udebs:
> 
>   libgcrypt20, libgpg-error0, libksba8
> 
> Of these three dependencies:
> 
>  * gpg-error is simple/small/trivial: i don't think it's particularly
>    objectionable, and there's already a udeb for it.

It's already used in d-i as a dependency of libgcrypt20-udeb?

>  * libgcrypt is the actively-developed crypto library that the we want
>    to rely on instead what's effectively an embedded stripped-down copy
>    in gpgv, so i think this is an actively good dependency to add.
>    libgcrypt also already has a udeb.

? which in turn is pulled through libcryptsetup4-udeb (itself needed by
cryptsetup-udeb). We moved to it from libgcrypt11-udeb a while ago
(during the jessie release cycle if memory serves).

>  * libksba8 is the X.509 and CMS support library used by GnuPG.  we
>    probably don't strictly need this for the installer (our archive
>    signatures use OpenPGP signatures and not CMS).  I can work on a
>    stripped-down build of gpgv2 that doesn't have this dependency if we
>    think that would be useful for minimizing the installer.
>    Alternately, I can work with pkg-gnutls to add a udeb for libksba
>    (we've already discussed the possibility of transferring the libksba
>    from pkg-gnutls to pkg-gnupg)

If having a build for the installer (without libksba8 support, and
possibly with strong optimization options, see the thread I mentioned
earlier) is feasible, that would be preferred to having an extra udeb
pulled just for a feature we're not going to use anyway. It's not
absolutely mandatory, so if you're having issued unentangling gpgv-udeb
from libksba8 in the 2.1 branch, please say so and we'll reconsider.

> let me know if you have any concerns, preferences, or questions about
> this work, and if you have specific time windows that it would be good
> to aim for.

I'm currently aiming at a release in the next few days, but feel free to
prepare stealing gpgv-udeb in experimental, and ping back this thread
once it's available there. After some testing by the installer team, it
can go to unstable and migrate to testing when it's ready. I'll then
adjust the freeze file to point at the new source package for further
block-udeb sessions.


Mraw,
KiBi.


====================================================================================================================================

kibi at wodi:~/debian-installer/packages$ for i in base-installer net-retriever; do echo $i; echo $i|sed 's/./=/g'; (cd $i; ack gpgv); echo; echo; done
base-installer
==============
debian/control
19:Depends: ${shlibs:Depends}, mounted-partitions, created-fstab, base-installer, debootstrap-udeb (>= 1.0.7), gpgv-udeb, debian-archive-keyring-udeb, archdetect

debian/bootstrap-base.postinst
84:		if type gpgv >/dev/null; then
89:			warning "gpgv not found, not authenticating archive"

debian/bootstrap-base/DEBIAN/postinst
84:		if type gpgv >/dev/null; then
89:			warning "gpgv not found, not authenticating archive"

debian/bootstrap-base/DEBIAN/control
8:Depends: libc6-udeb (>= 2.19), libdebconfclient0-udeb, libdebian-installer4-udeb (>= 0.97), mounted-partitions, created-fstab, base-installer, debootstrap-udeb (>= 1.0.7), gpgv-udeb, debian-archive-keyring-udeb, archdetect

debian/changelog
1299:  * Depend on gpgv-udeb, which has apparently never really been pulled in
2363:  * If gpgv and a keyring are installed, enable debootstrap's Release
2451:    - Make apt-get use gpgv --ignore-time-conflict to avoid validation

debian/base-installer/usr/lib/base-installer/library.sh
166:Acquire::gpgv::Options { "--ignore-time-conflict"; };

library.sh
166:Acquire::gpgv::Options { "--ignore-time-conflict"; };


net-retriever
=============
debian/control
14:Depends: ${misc:Depends}, choose-mirror, configured-network, di-utils (>= 1.58), gpgv-udeb, debian-archive-keyring-udeb

debian/changelog
338:  * Depend on gpgv-udeb, which has apparently never really been pulled in
463:  * Use log-output for gpgv call.
531:    - Check signature of Release file if gpgv and a keyring are installed.

debian/net-retriever/usr/lib/debian-installer/retriever/net-retriever
178:			# If gpgv and a keyring are installed, authentication is
180:			if type gpgv >/dev/null && [ -f "$keyring" ]; then
188:					     gpgv --status-fd 1 --keyring "$keyring" \
195:			    log "Not verifying Release signature: gpgv not available"

debian/net-retriever/DEBIAN/control
6:Depends: cdebconf-udeb, choose-mirror, configured-network, di-utils (>= 1.58), gpgv-udeb, debian-archive-keyring-udeb

net-retriever
114:	# If gpgv and a keyring are installed, authentication is
116:	if type gpgv >/dev/null && [ -f "$keyring" ]; then
124:			     gpgv --status-fd 1 --keyring "$keyring" \
131:		log "Not verifying Release signature: gpgv not available"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150812/9c8af4d5/attachment-0001.sig>

From wk at gnupg.org  Wed Aug 12 06:38:48 2015
From: wk at gnupg.org (Werner Koch)
Date: Wed, 12 Aug 2015 08:38:48 +0200
Subject: [pkg-gnupg-maint] gpgv udebs
In-Reply-To: <877fp1o03c.fsf@alice.fifthhorseman.net> (Daniel Kahn Gillmor's
 message of "Tue, 11 Aug 2015 19:51:35 -0400")
References: <877fp1o03c.fsf@alice.fifthhorseman.net>
Message-ID: <87k2t1c8p3.fsf@vigenere.g10code.de>

On Wed, 12 Aug 2015 01:51, dkg at fifthhorseman.net said:

>  * libksba8 is the X.509 and CMS support library used by GnuPG.  we
>    probably don't strictly need this for the installer (our archive
>    signatures use OpenPGP signatures and not CMS).  I can work on a

The use of libksba is unfortunate:

  # FIXME: Libkeybox.a links to libksba thus we need to add libksba
  # here, even that it is not used by gpg.  A proper solution would
  # either to split up libkeybox.a or to use a separate keybox daemon.

libkeybox implements the keybox format, which supports X.509 and
OpenPGP.  It is required to insert or search X.509 certificates but gpg
does not do this.  Thus we can split it up and build two of the keybox
convenience libraries - one for general use and one for use by gpg and
gpgv.

Shall I do that for 2.1.8?


Salam-Shalom,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.



From dkg at fifthhorseman.net  Wed Aug 12 14:12:52 2015
From: dkg at fifthhorseman.net (Daniel Kahn Gillmor)
Date: Wed, 12 Aug 2015 10:12:52 -0400
Subject: [pkg-gnupg-maint] gpgv udebs
In-Reply-To: <87k2t1c8p3.fsf@vigenere.g10code.de>
References: <877fp1o03c.fsf@alice.fifthhorseman.net>
 <87k2t1c8p3.fsf@vigenere.g10code.de>
Message-ID: <871tf8mw7v.fsf@alice.fifthhorseman.net>

On Wed 2015-08-12 02:38:48 -0400, Werner Koch wrote:
> The use of libksba is unfortunate:
>
>   # FIXME: Libkeybox.a links to libksba thus we need to add libksba
>   # here, even that it is not used by gpg.  A proper solution would
>   # either to split up libkeybox.a or to use a separate keybox daemon.
>
> libkeybox implements the keybox format, which supports X.509 and
> OpenPGP.  It is required to insert or search X.509 certificates but gpg
> does not do this.  Thus we can split it up and build two of the keybox
> convenience libraries - one for general use and one for use by gpg and
> gpgv.
>
> Shall I do that for 2.1.8?

yes, this sounds like the right solution.  thanks for coming up with it
so quickly, Werner!

I've filed https://bugs.gnupg.org/gnupg/issue2068 upstream to track the
proposal.

   --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 948 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150812/1fe301bb/attachment.sig>

From odyx at debian.org  Wed Aug 12 12:33:55 2015
From: odyx at debian.org (Didier 'OdyX' Raboud)
Date: Wed, 12 Aug 2015 14:33:55 +0200
Subject: gpgv udebs
In-Reply-To: <20150812003923.GA16508@mraw.org>
References: <877fp1o03c.fsf@alice.fifthhorseman.net>
 <20150812003923.GA16508@mraw.org>
Message-ID: <4126663.PYSPoj37Ib@gyllingar>

Le mercredi, 12 ao?t 2015, 02.39:23 Cyril Brulebois a ?crit :
> And thanks for getting in touch with us.

Indeed.

> Daniel Kahn Gillmor <dkg at fifthhorseman.net> (2015-08-11):
> > i believe the installer relies on gpgv for archive manifest
> > signature verification.  we have gpgv-udeb for that purpose, i
> > think.
> 
> That's the idea, yeah. Grepping through all of our packages ? see the
> results below my signature; that's basically base-installer and
> net-retriever which depend on gpgv-udeb.
> 
> For the record, last time we've seen changes in gpgv, that was in:
>   https://lists.debian.org/debian-boot/2014/01/msg00129.html
> 
> which eventually led to: #753985. Skimming through it again, it seems
> win32-loader was somewhat affected as well. Adding Didier in the loop
> explicitly just to be on the safe side.

Exactly. win32-loader embeds gpgv.exe, shipped in gpgv-win32, under 
/usr/share/win32/gpgv.exe; this embedding happens at (arch:all) build-
time, and only concerns the win32-loader.exe that is shipped on the 
Debian mirrors: http://httpredir.debian.org/debian/tools/win32-loader/unstable/win32-loader.exe . We discussed in #778877 the addition 
of an autopkgtest be added in gpg so that we could make sure gpgv.exe is 
kept in a working state. This doesn't seem to have made its way to the 
archive though.

Anyway, I'm digressing.

From the win32-loader point of view, all it needs is a gpgv.exe that can 
check Release.gpg files, when run under Windows (wine being a good test 
though). If that gpgv.exe is GnuPG 1 or 2 doesn't matter. :)

Cheers,
OdyX
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 648 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150812/8e4ea797/attachment.sig>

From ftpmaster at ftp-master.debian.org  Wed Aug 12 14:57:20 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Wed, 12 Aug 2015 14:57:20 +0000
Subject: Processing of gnutls28_3.3.8-6+deb8u2_allonly.changes
Message-ID: <E1ZPXSy-0006On-8Z@franck.debian.org>

gnutls28_3.3.8-6+deb8u2_allonly.changes uploaded successfully to localhost
along with the files:
  gnutls28_3.3.8-6+deb8u2.dsc
  gnutls28_3.3.8.orig.tar.xz
  gnutls28_3.3.8-6+deb8u2.debian.tar.xz
  gnutls-doc_3.3.8-6+deb8u2_all.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)


From ftpmaster at ftp-master.debian.org  Wed Aug 12 15:51:49 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Wed, 12 Aug 2015 15:51:49 +0000
Subject: gnutls28_3.3.8-6+deb8u2_allonly.changes ACCEPTED into
 proposed-updates->stable-new
Message-ID: <E1ZPYJh-0006Cj-Bv@franck.debian.org>

Mapping stable-security to proposed-updates.

Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 12 Aug 2015 10:15:44 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: all source
Version: 3.3.8-6+deb8u2
Distribution: jessie-security
Urgency: high
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Salvatore Bonaccorso <carnil at debian.org>
Closes: 795068
Description: 
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-deb0-28 - GNU TLS library - main runtime library
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dbg - GNU TLS library - debugger symbols
 libgnutls28-dev - GNU TLS library - development files
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.3.8-6+deb8u2) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Add 47_GNUTLS-SA-2015-3.patch patch.
     Fixes double free in DN decoding [GNUTLS-SA-2015-3]. (Closes: #795068)
Checksums-Sha1: 
 ddfced5af5e8f2432e37e2d22a4032b99255c7a9 2941 gnutls28_3.3.8-6+deb8u2.dsc
 2c07ed3f0ec3284820985085d63311e8b73cb48f 6153180 gnutls28_3.3.8.orig.tar.xz
 36a670c03b52b71e0713b31d50bcab9ef2fe0eb0 90516 gnutls28_3.3.8-6+deb8u2.debian.tar.xz
 ba1a0525961e67f3613abf4e7d3f081fc0e33093 3629252 gnutls-doc_3.3.8-6+deb8u2_all.deb
Checksums-Sha256: 
 f45d5de90a6c45b38a92febb9195c4fc516a841ac946bf10413469fde8286ea7 2941 gnutls28_3.3.8-6+deb8u2.dsc
 bd4642f180e19632f4ed3a1e62d60c824c7b695f5cddf41a8fba1b272eaef046 6153180 gnutls28_3.3.8.orig.tar.xz
 90486a621863cf633f655d4d814a64a67d7e0fbd97692ce605c7aecf1c0d144f 90516 gnutls28_3.3.8-6+deb8u2.debian.tar.xz
 b6a4af0bfd61c68e7103aa31523525c14c45a90e1b18e4b22d53e0e3a6f64e44 3629252 gnutls-doc_3.3.8-6+deb8u2_all.deb
Files: 
 7f3656d66927e0e10c2184ee42a6dc8e 2941 libs optional gnutls28_3.3.8-6+deb8u2.dsc
 b57e6b7630bdba9ea8eb28ff0eb29c2f 6153180 libs optional gnutls28_3.3.8.orig.tar.xz
 2b6f6606310614b19e16d5caecfd7236 90516 libs optional gnutls28_3.3.8-6+deb8u2.debian.tar.xz
 e6dc9ac60488b7ee0804fb689014dd1c 3629252 doc optional gnutls-doc_3.3.8-6+deb8u2_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=GC/A
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From fungs at web.de  Thu Aug 13 08:31:21 2015
From: fungs at web.de (Johannes =?UTF-8?Q?Dr=C3=B6ge?=)
Date: Thu, 13 Aug 2015 10:31:21 +0200
Subject: Bug#788704: related bug 792655
Message-ID: <55CC55D9.7060507@web.de>

This bug also makes CUPS crash in all tested versions.

https://bugs.debian.org/792655

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3778 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150813/3f61ed47/attachment.bin>

From odyx at debian.org  Thu Aug 13 08:53:18 2015
From: odyx at debian.org (Didier 'OdyX' Raboud)
Date: Thu, 13 Aug 2015 10:53:18 +0200
Subject: Bug#788704: Bug#792655: Further details on 792655
In-Reply-To: <55CC5521.1080004@web.de>
References: <55A8B899.5010702@web.de> <2004312.4C0C8nDg1h@gyllingar>
 <55CC5521.1080004@web.de>
Message-ID: <2550066.0yDnXvIFPI@gyllingar>

Control: retitle 792655 libgnutls segfault crashing CUPS
Control: reassign 792655 gnutls28 3.3.8-6+deb8u1
Control: forcemerge 788704 792655
Control: affects 788704 + cups

Le jeudi, 13 ao?t 2015, 10.28:17 Johannes Dr?ge a ?crit :
> after upgrading to CUPS version 2 from testing if found that it gave
> the same errors when accessing SSL functions. So I concluded that
> this might be a problem in the package libgnutls-deb0-28. After a
> little searching I found this recent (14 June 2015) bug report:
> 
> https://bugs.debian.org/788704
> 
> It turns out that the bug in GnuTLS is platform-specific
> 
> processor       : 0
> vendor_id       : CentaurHauls
> cpu family      : 6
> model           : 13
> model name      : VIA Eden Processor 1500MHz
> 
> The bug is fixed in newer upstream versions of GnuTLS but the one
> included in Debian Jessie still has the bug. After installing patched
> versions of the package, the segfault vanished. For me this is fine
> now but I hope that the patch finds its way into the stable release
> so other users don't run into this problem. Therefore, its good to
> have this documented here.

Great, thanks for the findings and explanation. I'm hereby reassigning 
this bug as not being a CUPS bug, assign it to GnuTLS and mark CUPS 
affected.

Thanks for your time!

Cheers,
OdyX
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 648 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150813/3b915393/attachment-0001.sig>

From owner at bugs.debian.org  Thu Aug 13 08:57:22 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 13 Aug 2015 08:57:22 +0000
Subject: Processed (with 2 errors): Re: Bug#792655: Further details on 792655
References: <2550066.0yDnXvIFPI@gyllingar>
 <1434285611.695837.3888.nullmailer@terrence.lucas.digitalbrains.com>
Message-ID: <handler.s.B788704.14394560047951.transcript@bugs.debian.org>

Processing control commands:

> retitle 792655 libgnutls segfault crashing CUPS
Bug #792655 [cups-daemon] cups-daemon: cupsd sefaults when handling ssl with libgnutls
Changed Bug title to 'libgnutls segfault crashing CUPS' from 'cups-daemon: cupsd sefaults when handling ssl with libgnutls'
> reassign 792655 gnutls28 3.3.8-6+deb8u1
Bug #792655 [cups-daemon] libgnutls segfault crashing CUPS
Bug reassigned from package 'cups-daemon' to 'gnutls28'.
No longer marked as found in versions cups/1.7.5-11+deb8u1.
Ignoring request to alter fixed versions of bug #792655 to the same values previously set
Bug #792655 [gnutls28] libgnutls segfault crashing CUPS
There is no source info for the package 'gnutls28' at version '3.3.8-6+deb8u1' with architecture ''
Unable to make a source version for version '3.3.8-6+deb8u1'
Marked as found in versions 3.3.8-6+deb8u1.
> forcemerge 788704 792655
Bug #788704 [src:gnutls28] gnutls28: VIA PadLock accelerated AES-CBC segfaults
Unable to merge bugs because:
package of #792655 is 'gnutls28' not 'src:gnutls28'
Failed to forcibly merge 788704: Did not alter merged bugs.

> affects 788704 + cups
Failed to mark 788704 as affecting package(s): failed to get lock on /org/bugs.debian.org/spool/lock/788704 -- Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
 at /usr/local/lib/site_perl/Debbugs/Common.pm line 587.


-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
792655: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792655
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From odyx at debian.org  Thu Aug 13 08:53:18 2015
From: odyx at debian.org (Didier 'OdyX' Raboud)
Date: Thu, 13 Aug 2015 10:53:18 +0200
Subject: Bug#792655: Further details on 792655
In-Reply-To: <55CC5521.1080004@web.de>
References: <55A8B899.5010702@web.de> <2004312.4C0C8nDg1h@gyllingar>
 <55CC5521.1080004@web.de>
Message-ID: <2550066.0yDnXvIFPI@gyllingar>

Control: retitle 792655 libgnutls segfault crashing CUPS
Control: reassign 792655 gnutls28 3.3.8-6+deb8u1
Control: forcemerge 788704 792655
Control: affects 788704 + cups

Le jeudi, 13 ao?t 2015, 10.28:17 Johannes Dr?ge a ?crit :
> after upgrading to CUPS version 2 from testing if found that it gave
> the same errors when accessing SSL functions. So I concluded that
> this might be a problem in the package libgnutls-deb0-28. After a
> little searching I found this recent (14 June 2015) bug report:
> 
> https://bugs.debian.org/788704
> 
> It turns out that the bug in GnuTLS is platform-specific
> 
> processor       : 0
> vendor_id       : CentaurHauls
> cpu family      : 6
> model           : 13
> model name      : VIA Eden Processor 1500MHz
> 
> The bug is fixed in newer upstream versions of GnuTLS but the one
> included in Debian Jessie still has the bug. After installing patched
> versions of the package, the segfault vanished. For me this is fine
> now but I hope that the patch finds its way into the stable release
> so other users don't run into this problem. Therefore, its good to
> have this documented here.

Great, thanks for the findings and explanation. I'm hereby reassigning 
this bug as not being a CUPS bug, assign it to GnuTLS and mark CUPS 
affected.

Thanks for your time!

Cheers,
OdyX
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 648 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150813/3b915393/attachment-0002.sig>

From owner at bugs.debian.org  Thu Aug 13 08:57:34 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 13 Aug 2015 08:57:34 +0000
Subject: Processed (with 2 errors): Re: Bug#792655: Further details on 792655
References: <2550066.0yDnXvIFPI@gyllingar>
 <20150717074024.24486.53730.reportbug@humboldt.fungs.de>
Message-ID: <handler.s.B792655.14394560047960.transcript@bugs.debian.org>

Processing control commands:

> retitle 792655 libgnutls segfault crashing CUPS
Bug #792655 [gnutls28] libgnutls segfault crashing CUPS
Ignoring request to change the title of bug#792655 to the same title
> reassign 792655 gnutls28 3.3.8-6+deb8u1
Bug #792655 [gnutls28] libgnutls segfault crashing CUPS
Ignoring request to reassign bug #792655 to the same package
Bug #792655 [gnutls28] libgnutls segfault crashing CUPS
There is no source info for the package 'gnutls28' at version '3.3.8-6+deb8u1' with architecture ''
Unable to make a source version for version '3.3.8-6+deb8u1'
Ignoring request to alter found versions of bug #792655 to the same values previously set
> forcemerge 788704 792655
Bug #788704 [src:gnutls28] gnutls28: VIA PadLock accelerated AES-CBC segfaults
Unable to merge bugs because:
package of #792655 is 'gnutls28' not 'src:gnutls28'
Failed to forcibly merge 788704: Did not alter merged bugs.

> affects 788704 + cups
Failed to mark 788704 as affecting package(s): failed to get lock on /org/bugs.debian.org/spool/lock/788704 -- Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
Unable to lock /org/bugs.debian.org/spool/lock/788704 Resource temporarily unavailable at /usr/local/lib/site_perl/Debbugs/Common.pm line 629.
 at /usr/local/lib/site_perl/Debbugs/Common.pm line 587.


-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
792655: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792655
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From owner at bugs.debian.org  Thu Aug 13 09:03:04 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 13 Aug 2015 09:03:04 +0000
Subject: Processed: affects 788704
References: <1439456338-2344-bts-odyx@debian.org>
Message-ID: <handler.s.C.14394563419585.transcript@bugs.debian.org>

Processing commands for control at bugs.debian.org:

> affects 788704 + cups
Bug #788704 [src:gnutls28] gnutls28: VIA PadLock accelerated AES-CBC segfaults
Added indication that 788704 affects cups
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From owner at bugs.debian.org  Thu Aug 13 09:03:09 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 13 Aug 2015 09:03:09 +0000
Subject: Processed (with 1 errors): forcibly merging 788704 792655
References: <1439456413-1383-bts-odyx@debian.org>
Message-ID: <handler.s.C.14394564169888.transcript@bugs.debian.org>

Processing commands for control at bugs.debian.org:

> forcemerge 788704 792655
Bug #788704 [src:gnutls28] gnutls28: VIA PadLock accelerated AES-CBC segfaults
Unable to merge bugs because:
package of #792655 is 'gnutls28' not 'src:gnutls28'
Failed to forcibly merge 788704: Did not alter merged bugs.

> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
792655: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792655
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From owner at bugs.debian.org  Thu Aug 13 09:03:13 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 13 Aug 2015 09:03:13 +0000
Subject: Processed: reassign 792655 to src:gnutls28
References: <1439456457-807-bts-odyx@debian.org>
Message-ID: <handler.s.C.143945646010725.transcript@bugs.debian.org>

Processing commands for control at bugs.debian.org:

> reassign 792655 src:gnutls28
Bug #792655 [gnutls28] libgnutls segfault crashing CUPS
Bug reassigned from package 'gnutls28' to 'src:gnutls28'.
No longer marked as found in versions 3.3.8-6+deb8u1.
Ignoring request to alter fixed versions of bug #792655 to the same values previously set
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
792655: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792655
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From owner at bugs.debian.org  Thu Aug 13 09:03:23 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Thu, 13 Aug 2015 09:03:23 +0000
Subject: Processed: forcibly merging 788704 792655
References: <1439456459-3381-bts-odyx@debian.org>
Message-ID: <handler.s.C.143945646210748.transcript@bugs.debian.org>

Processing commands for control at bugs.debian.org:

> forcemerge 788704 792655
Bug #788704 [src:gnutls28] gnutls28: VIA PadLock accelerated AES-CBC segfaults
Bug #788704 [src:gnutls28] gnutls28: VIA PadLock accelerated AES-CBC segfaults
Added tag(s) unreproducible.
Bug #792655 [src:gnutls28] libgnutls segfault crashing CUPS
Set Bug forwarded-to-address to 'http://lists.gnutls.org/pipermail/gnutls-devel/2015-June/007626.html'.
Severity set to 'important' from 'grave'
Added indication that 792655 affects cups
Marked as fixed in versions gnutls28/3.3.12-1.
Marked as found in versions gnutls28/3.3.8-6 and gnutls28/3.3.8-6+deb8u1.
Added tag(s) patch.
Merged 788704 792655
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
792655: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792655
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From ametzler at bebt.de  Fri Aug 14 16:43:33 2015
From: ametzler at bebt.de (Andreas Metzler)
Date: Fri, 14 Aug 2015 18:43:33 +0200
Subject: Bug#789393: jessie-pu: package gnutls28/3.3.8-6+deb8u2
In-Reply-To: <20150812145430.GA32622@eldamar.local>
References: <20150620140348.GA12192@downhill.g.la>
 <20150812145430.GA32622@eldamar.local>
Message-ID: <20150814164333.GA4075@downhill.g.la>

Control: retitle -1 jessie-pu: package gnutls28/3.3.8-6+deb8u3

On 2015-08-12 Salvatore Bonaccorso <carnil at debian.org> wrote:
> On Sat, Jun 20, 2015 at 04:03:48PM +0200, Andreas Metzler wrote:
[...] 
> > I would like two fix two issues in jessie:
> > 
> > #788704 VIA PadLock accelerated AES-CBC segfaults
> > This pretty much breaks gnutls on VIA processors.
> > 
> > GNUTLS-SA-2015-2. This might allow MD5 signatures, although they are
> > disabled by default. (Detailed info in the security tracker)

> Could you rebase this against 3.3.8-6+deb8u2 now available via
> DSA-3334-1? I decided not to include the fix for GNUTLS-SA-2015-2
> since there is as well the lynx-cur update via s-p-u required.

Hello,

find attached a new debdiff against the latest jessie security update.

cu Andreas

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
-------------- next part --------------
A non-text attachment was scrubbed...
Name: debdiff-3.3.8-6+deb8u2_tou3.diff
Type: text/x-diff
Size: 19289 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150814/f7c05cb6/attachment.diff>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150814/f7c05cb6/attachment.sig>

From ftpmaster at ftp-master.debian.org  Sat Aug 15 12:17:05 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Sat, 15 Aug 2015 12:17:05 +0000
Subject: gnutls28_3.3.8-6+deb8u2_allonly.changes ACCEPTED into
 proposed-updates->stable-new, proposed-updates
Message-ID: <E1ZQaOX-0004qE-NM@franck.debian.org>



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 12 Aug 2015 10:15:44 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: all source
Version: 3.3.8-6+deb8u2
Distribution: jessie-security
Urgency: high
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Salvatore Bonaccorso <carnil at debian.org>
Closes: 795068
Description: 
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls-deb0-28 - GNU TLS library - main runtime library
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutls28-dbg - GNU TLS library - debugger symbols
 libgnutls28-dev - GNU TLS library - development files
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.3.8-6+deb8u2) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Add 47_GNUTLS-SA-2015-3.patch patch.
     Fixes double free in DN decoding [GNUTLS-SA-2015-3]. (Closes: #795068)
Checksums-Sha1: 
 ddfced5af5e8f2432e37e2d22a4032b99255c7a9 2941 gnutls28_3.3.8-6+deb8u2.dsc
 2c07ed3f0ec3284820985085d63311e8b73cb48f 6153180 gnutls28_3.3.8.orig.tar.xz
 36a670c03b52b71e0713b31d50bcab9ef2fe0eb0 90516 gnutls28_3.3.8-6+deb8u2.debian.tar.xz
 ba1a0525961e67f3613abf4e7d3f081fc0e33093 3629252 gnutls-doc_3.3.8-6+deb8u2_all.deb
Checksums-Sha256: 
 f45d5de90a6c45b38a92febb9195c4fc516a841ac946bf10413469fde8286ea7 2941 gnutls28_3.3.8-6+deb8u2.dsc
 bd4642f180e19632f4ed3a1e62d60c824c7b695f5cddf41a8fba1b272eaef046 6153180 gnutls28_3.3.8.orig.tar.xz
 90486a621863cf633f655d4d814a64a67d7e0fbd97692ce605c7aecf1c0d144f 90516 gnutls28_3.3.8-6+deb8u2.debian.tar.xz
 b6a4af0bfd61c68e7103aa31523525c14c45a90e1b18e4b22d53e0e3a6f64e44 3629252 gnutls-doc_3.3.8-6+deb8u2_all.deb
Files: 
 7f3656d66927e0e10c2184ee42a6dc8e 2941 libs optional gnutls28_3.3.8-6+deb8u2.dsc
 b57e6b7630bdba9ea8eb28ff0eb29c2f 6153180 libs optional gnutls28_3.3.8.orig.tar.xz
 2b6f6606310614b19e16d5caecfd7236 90516 libs optional gnutls28_3.3.8-6+deb8u2.debian.tar.xz
 e6dc9ac60488b7ee0804fb689014dd1c 3629252 doc optional gnutls-doc_3.3.8-6+deb8u2_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=GC/A
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From owner at bugs.debian.org  Sat Aug 15 12:21:15 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 15 Aug 2015 12:21:15 +0000
Subject: Bug#795068: marked as done (gnutls28: double free flaw in
 certificate DN decoding (GNUTLS-SA-2015-3))
References: <E1ZQaOX-0004qO-PG@franck.debian.org>
 <20150810095425.5605.92345.reportbug@eldamar.local>
Message-ID: <handler.795068.D795068.143964102915508.ackdone@bugs.debian.org>

Your message dated Sat, 15 Aug 2015 12:17:05 +0000
with message-id <E1ZQaOX-0004qO-PG at franck.debian.org>
and subject line Bug#795068: fixed in gnutls28 3.3.8-6+deb8u2
has caused the Debian Bug report #795068,
regarding gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner at bugs.debian.org
immediately.)


-- 
795068: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=795068
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
-------------- next part --------------
An embedded message was scrubbed...
From: Salvatore Bonaccorso <carnil at debian.org>
Subject: gnutls28: double free flaw in certificate DN decoding (GNUTLS-SA-2015-3)
Date: Mon, 10 Aug 2015 11:54:25 +0200
Size: 1778
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150815/68c98ff8/attachment.mht>
-------------- next part --------------
An embedded message was scrubbed...
From: Salvatore Bonaccorso <carnil at debian.org>
Subject: Bug#795068: fixed in gnutls28 3.3.8-6+deb8u2
Date: Sat, 15 Aug 2015 12:17:05 +0000
Size: 6079
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150815/68c98ff8/attachment-0001.mht>

From adam at adam-barratt.org.uk  Sat Aug 15 13:40:42 2015
From: adam at adam-barratt.org.uk (Adam D. Barratt)
Date: Sat, 15 Aug 2015 14:40:42 +0100
Subject: Bug#789393: jessie-pu: package gnutls28/3.3.8-6+deb8u2
In-Reply-To: <20150814164333.GA4075@downhill.g.la>
References: <20150620140348.GA12192@downhill.g.la>
 <20150812145430.GA32622@eldamar.local>
 <20150814164333.GA4075@downhill.g.la>
Message-ID: <1439646042.2214.4.camel@adam-barratt.org.uk>

Control: tags -1 + confirmed

On Fri, 2015-08-14 at 18:43 +0200, Andreas Metzler wrote:
> Control: retitle -1 jessie-pu: package gnutls28/3.3.8-6+deb8u3
> 
> On 2015-08-12 Salvatore Bonaccorso <carnil at debian.org> wrote:
> > On Sat, Jun 20, 2015 at 04:03:48PM +0200, Andreas Metzler wrote:
> [...] 
> > > I would like two fix two issues in jessie:
> > > 
> > > #788704 VIA PadLock accelerated AES-CBC segfaults
> > > This pretty much breaks gnutls on VIA processors.
> > > 
> > > GNUTLS-SA-2015-2. This might allow MD5 signatures, although they are
> > > disabled by default. (Detailed info in the security tracker)
> 
> > Could you rebase this against 3.3.8-6+deb8u2 now available via
> > DSA-3334-1? I decided not to include the fix for GNUTLS-SA-2015-2
> > since there is as well the lynx-cur update via s-p-u required.
[...]
> find attached a new debdiff against the latest jessie security update.

Please go ahead; sorry for the delay.

Regards,

Adam



From debianbugs at j3e.de  Sat Aug 15 13:38:52 2015
From: debianbugs at j3e.de (=?UTF-8?Q?Bj=C3=B6rn?= JACKE)
Date: Sat, 15 Aug 2015 15:38:52 +0200
Subject: Bug#795591: gnutls ocsp bug causes fallback to plain unencrypted
 connections
Message-ID: <20150815133852.GA26792@SerNet.DE>

Package: gnutls28
Version: 3.3.8-6+deb8u2


gnutls sends ocsp certificate status even if the client didn't request that. This leads to TLS connections to OCSP enabled exim versions to

either 

1) fail completely (like for gmail trying to deliver mail to exim)

or 

2) the other side fall back to unencrypted smtp connections

Given that, I consider this a serious bug that should be fixed in Jessie.


the patch 45_As-server-don-t-try-to-send-extensions-we-didn-t-rec.patch that
was in the 3.3.16 sid gnutls package should be applied to the Jessie version
also.


From ftpmaster at ftp-master.debian.org  Sat Aug 15 14:04:46 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Sat, 15 Aug 2015 14:04:46 +0000
Subject: Processing of gnutls28_3.3.8-6+deb8u3_multi.changes
Message-ID: <E1ZQc4k-0007Ub-Rk@franck.debian.org>

gnutls28_3.3.8-6+deb8u3_multi.changes uploaded successfully to localhost
along with the files:
  gnutls28_3.3.8-6+deb8u3.dsc
  gnutls28_3.3.8-6+deb8u3.debian.tar.xz
  gnutls-doc_3.3.8-6+deb8u3_all.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)


From ametzler at bebt.de  Sat Aug 15 14:16:06 2015
From: ametzler at bebt.de (Andreas Metzler)
Date: Sat, 15 Aug 2015 16:16:06 +0200
Subject: Bug#788704: related bug 792655
In-Reply-To: <55CC55D9.7060507@web.de>
References: <55CC55D9.7060507@web.de>
Message-ID: <20150815141606.GD2319@downhill.g.la>

On 2015-08-13 Johannes Dr?ge <fungs at web.de> wrote:
> This bug also makes CUPS crash in all tested versions.

> https://bugs.debian.org/792655

Hello,

it will be fixed in the next jessie update, see
<https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=789393#22>

cu Andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'


From ftpmaster at ftp-master.debian.org  Sat Aug 15 15:50:08 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Sat, 15 Aug 2015 15:50:08 +0000
Subject: gnutls28_3.3.8-6+deb8u3_multi.changes ACCEPTED into
 proposed-updates->stable-new
Message-ID: <E1ZQdii-0004JA-4d@franck.debian.org>

Mapping jessie to stable.
Mapping stable to proposed-updates.

Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 14 Aug 2015 18:28:30 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: all source
Version: 3.3.8-6+deb8u3
Distribution: jessie
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler at debian.org>
Closes: 788704
Description: 
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls28-dbg - GNU TLS library - debugger symbols
 libgnutls28-dev - GNU TLS library - development files
 libgnutls-deb0-28 - GNU TLS library - main runtime library
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.3.8-6+deb8u3) jessie; urgency=medium
 .
   * Pull 50_Handle-zero-length-plaintext-for-VIA-PadLock-functio.patch from
     upstream version 3.3.12 to fix a crash in VIA PadLock asm. (Thanks, Peter
     Lebbing). Closes: #788704
   * Pull 51_0001__gnutls_session_sign_algo_enabled-do-not-consider-an.patch
     51_0002_before-falling-back-to-SHA1-as-signature-algorithm-i.patch
     51_0003_tests-added-reproducer-for-the-MD5-acceptance-issue.patch (the
     latter unfuzzed) from GnuTLS 3.3.15 to fix GNUTLS-SA-2015-2. - A
     ServerKeyExchange signature sent by the server was not verified to be in
     the acceptable by the client set of algorithms. That had the effect of
     allowing MD5 signatures (which are disabled by default) in the
     ServerKeyExchange message.
Checksums-Sha1: 
 3c40d629052a6ae6030b7cd0b1fb1ffa56f35c9e 2941 gnutls28_3.3.8-6+deb8u3.dsc
 2e4b9aba3af221807bf33eb87bf0085c4959d980 95104 gnutls28_3.3.8-6+deb8u3.debian.tar.xz
 ce72f27c1d0cbd51668d2b87e4d762efbb77e5a3 3626674 gnutls-doc_3.3.8-6+deb8u3_all.deb
Checksums-Sha256: 
 5c1cd78b2eb4547377ef5c0894de48945265251dbdca2303526cef894e77e46d 2941 gnutls28_3.3.8-6+deb8u3.dsc
 fe56f1f7a79b855577a5539202408e91a5a7a57095751550d983368cc0c08f8d 95104 gnutls28_3.3.8-6+deb8u3.debian.tar.xz
 4237df1548470db035c271b47a2897b3915d4e39e3cd430e89e1c5f1037dc38a 3626674 gnutls-doc_3.3.8-6+deb8u3_all.deb
Files: 
 8ad07147cab2bc286141c0ffe3fbb85d 2941 libs optional gnutls28_3.3.8-6+deb8u3.dsc
 0e8fbda2f8b264a4eb0c8cf9c809466a 95104 libs optional gnutls28_3.3.8-6+deb8u3.debian.tar.xz
 aca4e24bb39775418512e8e20aa3295d 3626674 doc optional gnutls-doc_3.3.8-6+deb8u3_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=HsqL
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From ftpmaster at ftp-master.debian.org  Sat Aug 15 18:47:06 2015
From: ftpmaster at ftp-master.debian.org (Debian FTP Masters)
Date: Sat, 15 Aug 2015 18:47:06 +0000
Subject: gnutls28_3.3.8-6+deb8u3_multi.changes ACCEPTED into
 proposed-updates->stable-new, proposed-updates
Message-ID: <E1ZQgTy-00074Y-Iq@franck.debian.org>



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 14 Aug 2015 18:28:30 +0200
Source: gnutls28
Binary: libgnutls28-dev libgnutls-deb0-28 libgnutls28-dbg gnutls-bin gnutls-doc guile-gnutls libgnutlsxx28 libgnutls-openssl27
Architecture: all source
Version: 3.3.8-6+deb8u3
Distribution: jessie
Urgency: medium
Maintainer: Debian GnuTLS Maintainers <pkg-gnutls-maint at lists.alioth.debian.org>
Changed-By: Andreas Metzler <ametzler at debian.org>
Closes: 788704
Description: 
 gnutls-bin - GNU TLS library - commandline utilities
 gnutls-doc - GNU TLS library - documentation and examples
 guile-gnutls - GNU TLS library - GNU Guile bindings
 libgnutls28-dbg - GNU TLS library - debugger symbols
 libgnutls28-dev - GNU TLS library - development files
 libgnutls-deb0-28 - GNU TLS library - main runtime library
 libgnutls-openssl27 - GNU TLS library - OpenSSL wrapper
 libgnutlsxx28 - GNU TLS library - C++ runtime library
Changes:
 gnutls28 (3.3.8-6+deb8u3) jessie; urgency=medium
 .
   * Pull 50_Handle-zero-length-plaintext-for-VIA-PadLock-functio.patch from
     upstream version 3.3.12 to fix a crash in VIA PadLock asm. (Thanks, Peter
     Lebbing). Closes: #788704
   * Pull 51_0001__gnutls_session_sign_algo_enabled-do-not-consider-an.patch
     51_0002_before-falling-back-to-SHA1-as-signature-algorithm-i.patch
     51_0003_tests-added-reproducer-for-the-MD5-acceptance-issue.patch (the
     latter unfuzzed) from GnuTLS 3.3.15 to fix GNUTLS-SA-2015-2. - A
     ServerKeyExchange signature sent by the server was not verified to be in
     the acceptable by the client set of algorithms. That had the effect of
     allowing MD5 signatures (which are disabled by default) in the
     ServerKeyExchange message.
Checksums-Sha1: 
 3c40d629052a6ae6030b7cd0b1fb1ffa56f35c9e 2941 gnutls28_3.3.8-6+deb8u3.dsc
 2e4b9aba3af221807bf33eb87bf0085c4959d980 95104 gnutls28_3.3.8-6+deb8u3.debian.tar.xz
 ce72f27c1d0cbd51668d2b87e4d762efbb77e5a3 3626674 gnutls-doc_3.3.8-6+deb8u3_all.deb
Checksums-Sha256: 
 5c1cd78b2eb4547377ef5c0894de48945265251dbdca2303526cef894e77e46d 2941 gnutls28_3.3.8-6+deb8u3.dsc
 fe56f1f7a79b855577a5539202408e91a5a7a57095751550d983368cc0c08f8d 95104 gnutls28_3.3.8-6+deb8u3.debian.tar.xz
 4237df1548470db035c271b47a2897b3915d4e39e3cd430e89e1c5f1037dc38a 3626674 gnutls-doc_3.3.8-6+deb8u3_all.deb
Files: 
 8ad07147cab2bc286141c0ffe3fbb85d 2941 libs optional gnutls28_3.3.8-6+deb8u3.dsc
 0e8fbda2f8b264a4eb0c8cf9c809466a 95104 libs optional gnutls28_3.3.8-6+deb8u3.debian.tar.xz
 aca4e24bb39775418512e8e20aa3295d 3626674 doc optional gnutls-doc_3.3.8-6+deb8u3_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=HsqL
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.


From owner at bugs.debian.org  Sat Aug 15 18:48:23 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 15 Aug 2015 18:48:23 +0000
Subject: Bug#792655: marked as done (libgnutls segfault crashing CUPS)
References: <E1ZQgTy-00074j-MV@franck.debian.org>
 <20150717074024.24486.53730.reportbug@humboldt.fungs.de>
Message-ID: <handler.792655.D788704.143966442830609.ackdone@bugs.debian.org>

Your message dated Sat, 15 Aug 2015 18:47:06 +0000
with message-id <E1ZQgTy-00074j-MV at franck.debian.org>
and subject line Bug#788704: fixed in gnutls28 3.3.8-6+deb8u3
has caused the Debian Bug report #788704,
regarding libgnutls segfault crashing CUPS
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner at bugs.debian.org
immediately.)


-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
-------------- next part --------------
An embedded message was scrubbed...
From: fungs <fungs at web.de>
Subject: cups-daemon: cupsd sefaults when handling ssl with libgnutls
Date: Fri, 17 Jul 2015 09:40:24 +0200
Size: 3796
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150815/46e46641/attachment.mht>
-------------- next part --------------
An embedded message was scrubbed...
From: Andreas Metzler <ametzler at debian.org>
Subject: Bug#788704: fixed in gnutls28 3.3.8-6+deb8u3
Date: Sat, 15 Aug 2015 18:47:06 +0000
Size: 6364
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150815/46e46641/attachment-0001.mht>

From owner at bugs.debian.org  Sat Aug 15 18:48:22 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 15 Aug 2015 18:48:22 +0000
Subject: Bug#788704: marked as done (gnutls28: VIA PadLock accelerated
 AES-CBC segfaults)
References: <E1ZQgTy-00074j-MV@franck.debian.org>
 <1434285611.695837.3888.nullmailer@terrence.lucas.digitalbrains.com>
Message-ID: <handler.788704.D788704.143966442830609.ackdone@bugs.debian.org>

Your message dated Sat, 15 Aug 2015 18:47:06 +0000
with message-id <E1ZQgTy-00074j-MV at franck.debian.org>
and subject line Bug#788704: fixed in gnutls28 3.3.8-6+deb8u3
has caused the Debian Bug report #788704,
regarding gnutls28: VIA PadLock accelerated AES-CBC segfaults
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner at bugs.debian.org
immediately.)


-- 
788704: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788704
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
-------------- next part --------------
An embedded message was scrubbed...
From: Peter Lebbing <peter at digitalbrains.com>
Subject: gnutls28: VIA PadLock accelerated AES-CBC segfaults
Date: Sun, 14 Jun 2015 14:40:11 +0200
Size: 11195
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150815/5da8dabc/attachment-0002.mht>
-------------- next part --------------
An embedded message was scrubbed...
From: Andreas Metzler <ametzler at debian.org>
Subject: Bug#788704: fixed in gnutls28 3.3.8-6+deb8u3
Date: Sat, 15 Aug 2015 18:47:06 +0000
Size: 6364
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150815/5da8dabc/attachment-0003.mht>

From noreply at release.debian.org  Sun Aug 16 16:39:09 2015
From: noreply at release.debian.org (Debian testing watch)
Date: Sun, 16 Aug 2015 16:39:09 +0000
Subject: gnutls28 3.3.17-1 MIGRATED to testing
Message-ID: <E1ZR0xh-0007T8-Np@franck.debian.org>

FYI: The status of the gnutls28 source package
in Debian's testing distribution has changed.

  Previous version: 3.3.16-2
  Current version:  3.3.17-1

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See https://release.debian.org/testing-watch/ for more information.


From newsletter at chm.hr  Sun Aug 16 23:41:25 2015
From: newsletter at chm.hr (Control Home Managment)
Date: Mon, 17 Aug 2015 01:41:25 +0200
Subject: =?utf-8?Q?Odr=C5=BEavanje, _=C4=8Di=C5=A1=C4=87enje, _hortikultura,
 _tehni?=  =?utf-8?Q?=C4=8Dko_upravljanje, _property_managment,
 _facility_managment, _o?=  =?utf-8?Q?stale_usluge?=
Message-ID: <OTY0ODQzMwAC276391Y11BAMTQzOTc2ODQ4NTUyNjAx@www.chm.hr>

Ne mo?ete pro?itati e-mail? Pro?itajte ga ovdje. (
http://www.chm.hr/index.php?option=com_acymailing&ctrl=archive&task=view&mailid=11&key=3PJdxoTH&subid=276391-ap7CLJ6IYInd4o&tmpl=component )

Kolovoz 2015 | www.chm.hr ( http://www.chm.hr ) | Tel.: +385 (0) 95 504 30 74 | 

Odr?avanje ( http://www.chm.hr/odrzavanje/cjelogodisnje-odrzavanje-objekata )
?i??enje ( http://www.chm.hr/ciscenje )
Hortikultura ( http://www.chm.hr/hortikultura )
Tehni?ko upravljanje ( http://www.chm.hr/tehnicko-upravljanje )
Property managment ( http://www.chm.hr/managment/property-managment )
Facility managment ( http://www.chm.hr/managment/facility-managment )
Ostale usluge ( http://www.chm.hr/ostale-usluge )

Koliko puta ste se zapitali?

* ?to se doga?a s Va?om nekretninom dok Vas nema (posebno nakon nevremena)?

* Uslijed neprovjetravanja Va?a ku?a-apartman ima neugodan miris?

* Primjetili ste pojavu gljivica, vlage i plijesni?

* ?elite izbje?i mukotrpna ?i??enja (kada do?ete i prije nego odlazite)?

* ?eljeli biste iznajmljivati nekretninu kada ju ne koristite, ali to ne radite jer je to neizvedivo zbog udaljenosti (jednostavno ?ivite
predaleko)?

* Koliko puta ste se zapitali koliko novca i vremena tro?ite na samo jedan neplanirani (zimski) obilazak?

Na sva postavljenja pitanja i na puno vi?e mi imamo odgovor!
 
ODABERITE JEDAN OD NA?IH STANDARDNIH PAKETA

Paket Silver ( http://www.chm.hr/odrzavanje/cjelogodisnje-odrzavanje-objekata/paket-silver )

Paket Gold ( http://www.chm.hr/odrzavanje/cjelogodisnje-odrzavanje-objekata/paket-gold )

Paket Platinum ( http://www.chm.hr/odrzavanje/cjelogodisnje-odrzavanje-objekata/paket-platinum )

Paket izmjena gostiju ( http://www.chm.hr/odrzavanje/cjelogodisnje-odrzavanje-objekata/paket-izmjena-gostiju )

* Obilazak nekretnine jednom mjese?no

* Obilazak nekretnine nakon nevremena

* Obilazak nekretnine na zahtjev klijenta

* Provjetravanje nekretnine

* Pregled instalacija

* Prikupljanje po?te i slanje na Va?u adresu

* Kontrola brojila

* Zalijevanje zelenila

* Slanje izvje?taja o stanju nekretnine (fotografije i popratni tekst, nakon svakog obilaska)

* ?uvanje klju?eva u sefu

* Ustupanje klju?eva uz Va?u autorizaciju

* Uklju?ivanje i isklju?ivanje ure?aja

* Obilazak nekretnine jednom mjese?no

* Obilazak nekretnine nakon nevremena

* Obilazak nekretnine na zahtjev klijenta

* Provjetravanje nekretnine

* Pregled instalacija

* Prikupljanje po?te i slanje na Va?u adresu

* Kontrola brojila

* Zalijevanje zelenila

* Slanje izvje?taja o stanju nekretnine

* ?uvanje klju?eva u sefu

* Ustupanje klju?eva uz Va?u autorizaciju

* Generalno ?i??enje nekretnine 2 puta godi?nje prije Va?eg dolaska i nakon Va?eg odlaska

* Odr?avanje vrta

* Sitni popravci

* Uklju?ivanje i isklju?ivanje ure?aja

* Nabava i dostava namirnica prije Va?eg dolaska (po Va?im ?eljama)

* Vlasnik ste nekretnine na moru, koristite ju 30 dana ili ?ak kra?e?

* ?elite dodatni prihod od iznajmljivanja nekretnine u vremenu kada ju koristite?

Prepustite nama kompletnu brigu.

* Potpuna briga i odr?avanje nekretnine

* Ogla?avanje

* Do?ekivanje i ispra?anje gostiju

* Prijava gosta nadle?nim institucijama

* Pla?anje re?ijskih tro?kova

* Vo?enje Va?eg knjigovodstva

Obratite nam se s povjerenjem!

* Prihvat Va?ih gostiju

* Registracija Va?ih gostiju nadle?nim organima

* Provjera nekretnine i inventara prije dolaska gostiju

* Usluge naplate

* Ispra?anje gostiju

* Provjera nekretnine i inventara po odlasku gostiju

* Generalno ?i??enje nekretnine po odlasku gostiju

* Briga oko promjene posteljine i ru?nika

* Dezinfekcija kupaonica i WC-a

* Posebne usluge prema Va?im ?eljama...

Ostale usluge

* ?i??enje (apartmana, ku?a, plovila, bazena i oku?nica)

* Ure?enje i odr?avanje oku?nica

* Usluga pranja posteljine

* Osiguranje objekta

* Video nadzor

* Tehni?ko upravljanje objektima

* Property managment

Web: www.chm.hr ( http://www.chm.hr )
E-mail: info at chm.hr
Benkovac: +385 (0) 23 789 777+385 (0) 23 789 777
Ured Slovenija: officeslovenija at chm.hr

Facebook: controlHOMEmanagment ( https://www.facebook.com/controlHOMEmanagment )
Google+: controlHOMEmanagment ( https://plus.google.com/u/0/102209662597667316670 )

Cjelogodi?nje odr?avanje objekata za odmor

Puno vi?e od ?i??enja
 Prepustite na?em stru?nom timu kompletnu brigu o Va?oj nekretnini.

Control Home Managment d.o.o.

Ured Benkovac

Plemena Lap?anina 1
23420 Benkovac
Tel: +385 (0) 23 789 777+385 (0) 23 789 777
Mob: +385 (0) 95 504 30 74
E-mail: info at chm.hr

Zagreb
Tel: +385 (0) 95 504 3074
E-mail: officezagreb at chm.hr

Zadar
Tel: +385 (0) 23 789 777+385 (0) 23 789 777
E-mail: officezadar at chm.hr

Ured Slovenija
Lava 7
3000 Celje
Tel: +386 (0) 5 9111 207+386 (0) 5 9111 207
Fax: +386 (0) 5 9111 209
E-mail: officeslovenija at chm.hr

Ako ne ?elite vi?e primati na?e newslettere, odjavite se ovdje (
http://www.chm.hr/index.php?subid=276391&option=com_acymailing&ctrl=user&task=out&mailid=11&key=ap7CLJ6IYInd4o )

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150817/657c2882/attachment-0001.html>

From e.adresar1000 at gmail.com  Thu Aug 13 05:35:12 2015
From: e.adresar1000 at gmail.com (POSLOVNI ADRESAR)
Date: Thu, 13 Aug 2015 07:35:12 +0200
Subject: =?UTF-8?B?UE9TTE9WTkkgS09OVEFLVEkgWkEgU1RSQU5FIERSxb1BVkUsIE9TSUdVUkFKVEUgU0kgU1ZPR0E=?=
Message-ID: <915cfd39fc3dc0a3918edb3b01bf2fdb@obvestila.bizidan.com>

Your email client cannot read this email.
To view it online, please go here:
http://obvestila.bizidan.com/display.php?M=272261&C=3787585460791fe2eeb8ff4ddebb7527&S=264&L=5&N=277


To stop receiving these
emails:http://obvestila.bizidan.com/unsubscribe.php?M=272261&C=3787585460791fe2eeb8ff4ddebb7527&L=5&N=264
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150813/bfb23482/attachment.html>

From dkg at fifthhorseman.net  Wed Aug 19 10:55:58 2015
From: dkg at fifthhorseman.net (Daniel Kahn Gillmor)
Date: Wed, 19 Aug 2015 12:55:58 +0200
Subject: gpgv udebs
In-Reply-To: <877fp1o03c.fsf@alice.fifthhorseman.net>
References: <877fp1o03c.fsf@alice.fifthhorseman.net>
Message-ID: <8737zffsxt.fsf@alice.fifthhorseman.net>

On Wed 2015-08-12 01:51:35 +0200, Daniel Kahn Gillmor wrote:

> i believe the installer relies on gpgv for archive manifest signature
> verification.  we have gpgv-udeb for that purpose, i think.

One more followup about gnupg and udebs--

The gnupg packaging currently makes a gnupg-udeb in addition to a
gpgv-udeb.  This post is about gnupg-udeb, and not gpgv-udeb.

I'm proposing to drop the gnupg-udeb entirely.

It looks like it was used at one point in the past for partman-crypto,
but it is no longer used there.

I searched here:

  http://codesearch.debian.net/results/gnupg-udeb/

and the only places it shows up are the changelong for partman-crypto,
and a test case for python-debian.  the package isn't actually used any
more.

So i plan to drop the gnupg-udeb in a future release of the gnupg
package, unless i hear a report that it's something people need.

Anyone want to speak up in favor of keeping it?

       --dkg


From kibi at debian.org  Fri Aug 21 04:49:45 2015
From: kibi at debian.org (Cyril Brulebois)
Date: Fri, 21 Aug 2015 06:49:45 +0200
Subject: gpgv udebs
In-Reply-To: <8737zffsxt.fsf@alice.fifthhorseman.net>
References: <877fp1o03c.fsf@alice.fifthhorseman.net>
 <8737zffsxt.fsf@alice.fifthhorseman.net>
Message-ID: <20150821044945.GB2189@mraw.org>

Hi,

Daniel Kahn Gillmor <dkg at fifthhorseman.net> (2015-08-19):
> On Wed 2015-08-12 01:51:35 +0200, Daniel Kahn Gillmor wrote:
> 
> > i believe the installer relies on gpgv for archive manifest signature
> > verification.  we have gpgv-udeb for that purpose, i think.
> 
> One more followup about gnupg and udebs--
> 
> The gnupg packaging currently makes a gnupg-udeb in addition to a
> gpgv-udeb.  This post is about gnupg-udeb, and not gpgv-udeb.

eh, thanks for the hint; mixing up those could easily happen.

> I'm proposing to drop the gnupg-udeb entirely.
> 
> It looks like it was used at one point in the past for partman-crypto,
> but it is no longer used there.

ACK, removed in:
  http://anonscm.debian.org/cgit/d-i/partman-crypto.git/commit/?id=4c53c1c57733154689b54bd5abb689f8720b4984

Confirmed by looking at apt-cache showpkg gnupg-udeb in a sid/amd64
chroot (with udeb support).

> I searched here:
> 
>   http://codesearch.debian.net/results/gnupg-udeb/
> 
> and the only places it shows up are the changelong for partman-crypto,
> and a test case for python-debian.  the package isn't actually used any
> more.
> 
> So i plan to drop the gnupg-udeb in a future release of the gnupg
> package, unless i hear a report that it's something people need.
> 
> Anyone want to speak up in favor of keeping it?

Dropping looks good to me, thanks for asking!

Mraw,
KiBi.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150821/a9f3c01f/attachment.sig>

From ann.hayford at yahoo.com  Sat Aug 22 13:32:41 2015
From: ann.hayford at yahoo.com (ANN Hayford)
Date: Sat, 22 Aug 2015 13:32:41 +0000 (UTC)
Subject: PARTNERSHIP BUSINESS TRANSACTION WITH YOU IN YOUR COUNTRY.
Message-ID: <307596193.125701.1440250361711.JavaMail.yahoo@mail.yahoo.com>

Hello Friend and Brother,
As you read this, don't feel sorry for me, because it is the destiny
of everybody to die someday. I am Mrs. Ann Hayford.,a naturalized
Briton by birth and a
business merchant based in the United States. suffering from a long
term Esophageal Cancer.

It has defiled all forms of medical treatment, and right now I have
only about a few months to live, according to medical experts. I
regret that I have not
particularly lived my life so well, as I never really cared for
anyone, but my trade. Though I am very well to do, I was never open
handed; I was always hostile to
people and regarded them like they never had hopes of becoming as
successful as myself.

Now I know that there is a lot more to life than just prosperity. I
believe that when I am given a second chance to come to this world, I
would live my life a different way from how I have lived it. Now that
death is eminent, I have willed and given most of my belonging to
immediate and extended family members, as well as a few close friends.
I want God to be merciful to me and accept my soul. Hence I have
decided to support charity work. this is what i want to be remembered
for. So far, I have been able to reach out to a few charity
organizations in the Singapore, Algeria and Malaysia. Now that my
health has deteriorated so badly, I cannot do this myself anymore.

I once asked members of my family to aid me in giving of alms to those
organizations catering for the less privileged in America and
Pakistan; they refused and kept
the resources to themselves. Hence, I do not trust them anymore, as
they seem not to be contented with what I have given to them.

I sold all my remaining belongings and deposited all the sum that I
have in a safe keeping company abroad, The total amount is US$15.4M
deposited with a security Financial company in Lome Togo with a ware
house in Ghana.. I don't want a situation where this money will be
used in an ungodly manner, hence my bold decision to contact you, a
total stranger. Since my health is regressing by the minute, you will
have to tell me a little about yourself. why I have decided to contact
you is because I have no child or devoted relation who could reliably
execute my will,i only had an adopted child who is 16 yrs now.
With the information, I will make arrangement to prepare the
Authorization for you to get possession of the Deposit.
Until I hear from you, I pray that this letter bring you and your
family good tidings.All replies should be forwarded to My adopted son via his email andersonjimmy53 at yahoo.com
Sincerely,
Ann Hayford
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150822/0e6743e2/attachment.html>

From joseph.lawrence at fvh30.mirohost.net  Mon Aug 24 18:18:09 2015
From: joseph.lawrence at fvh30.mirohost.net (E-ZPass Support)
Date: Mon, 24 Aug 2015 21:18:09 +0300
Subject: Payment for driving on toll road, invoice #00000583744
Message-ID: <26a1c422e56c9e634cca40e07e4252e9@fvh30.mirohost.net>

Notice to Appear,

You have not paid for driving on a toll road. 
Please service your debt in the shortest possible time.

The copy of the invoice is attached to this email.

Sincerely,
Joseph Lawrence,
E-ZPass Agent.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 00000583744.zip
Type: application/zip
Size: 1906 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150824/c1124d31/attachment.zip>

From markus.ka.rinne at gmail.com  Mon Aug 24 19:12:12 2015
From: markus.ka.rinne at gmail.com (Markus Rinne)
Date: Mon, 24 Aug 2015 22:12:12 +0300
Subject: Bug#796818: libgcrypt20-dev: 'libgcrypt-config --libs' prints an
 error if dpkg-dev is not installed
Message-ID: <20150824191212.GA13974@tursas>

Package: libgcrypt20-dev
Version: 1.6.3-2
Severity: normal

Dear Maintainer,

If package dpkg-dev is not installed, the command

    libgcrypt-config --libs

prints this error to standard error:

    /usr/bin/libgcrypt-config: 1: /usr/bin/libgcrypt-config: dpkg-architecture: not found

This is printed to standard output:

    -L/lib/x86_64-linux-gnu -lgcrypt

(Package dpkg-dev contains dpkg-architecture.)

If dpkg-dev is installed, the same command prints this to standard output:

    -lgcrypt

and nothing is printed to standard error.

Should dpkg-dev be a dependency of libgcrypt20-dev?


-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.1.0-2-amd64 (SMP w/1 CPU core)
Locale: LANG=fi_FI.UTF-8, LC_CTYPE=fi_FI.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libgcrypt20-dev depends on:
ii  libc6-dev [libc-dev]  2.19-19
ii  libgcrypt20           1.6.3-2
ii  libgpg-error-dev      1.19-2

libgcrypt20-dev recommends no packages.

Versions of packages libgcrypt20-dev suggests:
pn  libgcrypt20-doc  <none>

-- no debconf information


From rita_lorry60 at yahoo.co.jp  Fri Aug 28 14:16:18 2015
From: rita_lorry60 at yahoo.co.jp (Mrs Hawa Hassan)
Date: Fri, 28 Aug 2015 23:16:18 +0900 (JST)
Subject: Awaiting your response, I am Mrs. Hawa Hassan,
 wife of the late Mr. Muhammad Hassan,
 I am contacting you to let you know my desire to establish Five star hotel and
 estate business in your country. If you are interested to be my partner in
 this development Hearing of you,
 I'll give more details. While waiting for your response through my private
 email (mrshawahassan1998@gmail.com) Thank you. Truly yours Mrs. Hawa Hassan.
 +225 67719967
Message-ID: <515619.79373.qm@web101514.mail.kks.yahoo.co.jp>


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150828/dd19c421/attachment.html>

From owner at bugs.debian.org  Sun Aug 30 15:45:12 2015
From: owner at bugs.debian.org (Debian Bug Tracking System)
Date: Sun, 30 Aug 2015 15:45:12 +0000
Subject: Processed: limit source to libgcrypt20, tagging 796818
References: <1440949358-2024-bts-ametzler@debian.org>
Message-ID: <handler.s.C.144094936218022.transcript@bugs.debian.org>

Processing commands for control at bugs.debian.org:

> limit source libgcrypt20
Limiting to bugs with field 'source' containing at least one of 'libgcrypt20'
Limit currently set to 'source':'libgcrypt20'

> tags 796818 + pending
Bug #796818 [libgcrypt20-dev] libgcrypt20-dev: 'libgcrypt-config --libs' prints an error if dpkg-dev is not installed
Added tag(s) pending.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
796818: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796818
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems


From lyne.bousquet29 at corbeilelectro.ca  Sun Aug 30 18:07:13 2015
From: lyne.bousquet29 at corbeilelectro.ca (COLAS CHRISTIAN)
Date: Sun, 30 Aug 2015 14:07:13 -0400
Subject: AVIS DE PROPOSITION
Message-ID: <757558eb729e463b9df25661cb573d20.lyne.bousquet29@corbeilelectro.ca>





Bonjour

Vous avez besoin d'un pr?t d'argent pour une raison quelconque ?
Vous ?tes fich?s en banque ? 
Votre banque refuse de vous pr?ter de l'argent ? 
Vous ne savez plus vers qui vous tourner parce que les institutions financi?res rejettent 
votre dossier de pr?t ?

J'ai la solution pour vous.
Je suis consultant fran?ais en investissement et je pourrais vous aider a trouver un 
investisseur ou une institution financi?re pouvant vous octroyer des pr?ts d'argent ou 
investir dans vos diff?rents projets fiables. 
- Pret entre particulier
- Possibilit? d'aide financi?re de plusieurs millions d'euros

Veuillez me contacter si vous ?tes int?ress?. E-mail :  
colaschristianfr at gmail.com,colaschristianfr at outlook.fr
TEL:+13156776230
Salutations cordiale 
COLAS CHRISTIAN



From helmut at subdivi.de  Mon Aug 31 13:09:58 2015
From: helmut at subdivi.de (Helmut Grohne)
Date: Mon, 31 Aug 2015 15:09:58 +0200
Subject: Bug#797544: please make Build-Depends: datefudge optional
Message-ID: <20150831130957.GA5296@alf.mars>

Source: gnutls28
Version: 3.4.4.1-1
Severity: wishlist
Tags: patch
User: helmutg at debian.org
Usertags: rebootstrap

Please allow building gnutls28 without having datefudge installed. The
package is only needed for running the test suite and it really is not
used when building with DEB_BUILD_OPTIONS=nocheck. Thus it can be marked
with <!nocheck>, a build profile specification complementing the option.
This would reduce the number of packages that need to be cross built to
bootstrap Debian, as datefudge would no longer have to be (uselessly)
built.

A patch implementing the requested feature is attached.

Helmut
-------------- next part --------------
diff --minimal -Nru gnutls28-3.4.4.1/debian/changelog gnutls28-3.4.4.1/debian/changelog
--- gnutls28-3.4.4.1/debian/changelog	2015-08-11 20:12:50.000000000 +0200
+++ gnutls28-3.4.4.1/debian/changelog	2015-08-31 15:05:31.000000000 +0200
@@ -1,3 +1,10 @@
+gnutls28 (3.4.4.1-1.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Turn Build-Depends: datefudge optional via <!nocheck> profile. Closes: #-1
+
+ -- Helmut Grohne <helmut at subdivi.de>  Mon, 31 Aug 2015 15:04:57 +0200
+
 gnutls28 (3.4.4.1-1) experimental; urgency=medium
 
   * New upstream version.
diff --minimal -Nru gnutls28-3.4.4.1/debian/control gnutls28-3.4.4.1/debian/control
--- gnutls28-3.4.4.1/debian/control	2015-08-11 19:00:28.000000000 +0200
+++ gnutls28-3.4.4.1/debian/control	2015-08-31 14:59:43.000000000 +0200
@@ -7,7 +7,7 @@
  James Westby <jw+debian at jameswestby.net>,
  Simon Josefsson <simon at josefsson.org>
 Build-Depends: debhelper (>= 9), nettle-dev (>= 3.1), zlib1g-dev,
- libtasn1-6-dev (>= 4.3), autotools-dev, guile-2.0-dev [!ia64 !m68k], datefudge,
+ libtasn1-6-dev (>= 4.3), autotools-dev, guile-2.0-dev [!ia64 !m68k], datefudge <!nocheck>,
  libp11-kit-dev (>= 0.23.1), pkg-config, chrpath, libidn11-dev (>= 1.31),
  autogen (>= 1:5.16-0), bison, dh-autoreconf, libgmp-dev (>= 2:6),
  libopts25-dev

From adedios at mc.edu.ph  Mon Aug 31 13:41:12 2015
From: adedios at mc.edu.ph (De Dios, Aurora J.)
Date: Mon, 31 Aug 2015 13:41:12 +0000
Subject: Financial donation to you from Mrs. Maria Elisabeth, for more
 details kindly contact: mrsmariaelisa@qq.com
Message-ID: <32CE957F81DFC04293FC68548F680F030AE03FE9@MCEMAIL.mc.edu.ph>


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20150831/58edf4a4/attachment.html>