libsoup2.4_2.74.3-8.1_source.changes ACCEPTED into unstable
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Tue Dec 10 05:49:00 GMT 2024
Thank you for your contribution to Debian.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 10 Dec 2024 13:17:25 +0800
Source: libsoup2.4
Architecture: source
Version: 2.74.3-8.1
Distribution: unstable
Urgency: high
Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers at lists.alioth.debian.org>
Changed-By: Sean Whitton <spwhitton at spwhitton.name>
Closes: 1088812 1089238 1089240
Changes:
libsoup2.4 (2.74.3-8.1) unstable; urgency=high
.
* Non-maintainer upload.
* Backport upstream fixes for
- CVE-2024-52530: HTTP request smuggling with null bytes at the end of
header names (Closes: #1088812)
- CVE-2024-52531: buffer overflow in soup_header_parse_param_list_strict
(Closes: #1089240)
- CVE-2024-52532: infinite loop / potential DoS in reading certain
data from WebSocket clients (Closes: #1089238).
Checksums-Sha1:
b294f867224cb49bd18b82cd00b49a5d945acb40 3497 libsoup2.4_2.74.3-8.1.dsc
cc123495342082013ac74d08da6472f6adfa8025 31156 libsoup2.4_2.74.3-8.1.debian.tar.xz
Checksums-Sha256:
e67ed6389d45bddee817d3dcfa3ae595471c1de9cd335ea9226345af766e6ff4 3497 libsoup2.4_2.74.3-8.1.dsc
55ad94945e031d010d42ee51fda23d7506cc88517f5db276e9f58866720b450c 31156 libsoup2.4_2.74.3-8.1.debian.tar.xz
Files:
410a9719c109cba4525d645b9d0de0a8 3497 oldlibs optional libsoup2.4_2.74.3-8.1.dsc
ddbfc61735c771cb2534de6016fad99e 31156 oldlibs optional libsoup2.4_2.74.3-8.1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=2Jb5
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-gnome-maintainers/attachments/20241210/e2433a09/attachment.sig>
More information about the pkg-gnome-maintainers
mailing list