* Merge from Debian unstable (LP: #1939739). Remaining changes:
- Enable CET.
- Set default priority string to only allow TLS1.2, DTLS1.2, and
TLS1.3 with medium security profile (2048 RSA keys minimum, and
similar).
- Reduce parallelism in build to 2 to address FTBFS with lto
* Add LP bug number to previous merge entry in changelog
gnutls28 (3.7.1-5) unstable; urgency=medium
* Another fix from 3.7.2:
56_30-x509-verify-treat-SHA-1-signed-CA-in-the-trusted-set.patch
* 40_fix_ipv6only_testsuite_AI_ADDRCONFIG.diff applied upstream, renamed to
56_33-serv-stop-setting-AI_ADDRCONFIG-on-getaddrinfo.patch
-- William 'jawn-smith' Wilson <email address hidden> Thu, 12 Aug 2021 13:17:53 -0600
This bug was fixed in the package gnutls28 - 3.7.1-5ubuntu1
---------------
gnutls28 (3.7.1-5ubuntu1) impish; urgency=low
* Merge from Debian unstable (LP: #1939739). Remaining changes:
- Enable CET.
- Set default priority string to only allow TLS1.2, DTLS1.2, and
TLS1.3 with medium security profile (2048 RSA keys minimum, and
similar).
- Reduce parallelism in build to 2 to address FTBFS with lto
* Add LP bug number to previous merge entry in changelog
gnutls28 (3.7.1-5) unstable; urgency=medium
* Another fix from 3.7.2: 30-x509- verify- treat-SHA- 1-signed- CA-in-the- trusted- set.patch ipv6only_ testsuite_ AI_ADDRCONFIG. diff applied upstream, renamed to 33-serv- stop-setting- AI_ADDRCONFIG- on-getaddrinfo. patch
56_
* 40_fix_
56_
-- William 'jawn-smith' Wilson <email address hidden> Thu, 12 Aug 2021 13:17:53 -0600