libsoup3_3.6.6-1_source.changes ACCEPTED into unstable
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Sat Feb 14 23:50:19 GMT 2026
Thank you for your contribution to Debian.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 14 Feb 2026 18:24:11 -0500
Source: libsoup3
Built-For-Profiles: noudeb
Architecture: source
Version: 3.6.6-1
Distribution: unstable
Urgency: high
Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers at lists.alioth.debian.org>
Changed-By: Jeremy Bícha <jbicha at ubuntu.com>
Closes: 1127843 1127905
Changes:
libsoup3 (3.6.6-1) unstable; urgency=high
.
* New upstream release
- SECURITY UPDATE: Integer overflow introduced by CVE-2025-32052 fix
when resource_length=0
- CVE-2026-2369 (Closes: #1127843)
- SECURITY UPDATE: Out-of-bounds read in libsoup handle_partial_get()
leading to heap information disclosure
- CVE-2026-2443 (Closes: #1127905)
* Remove patches applied in new release
* Refresh patches
Checksums-Sha1:
49c5a29c736f68296d4e2aa3be846c731401a434 2946 libsoup3_3.6.6-1.dsc
bf60e40726e94f5253a752071c9a80abb86ddc21 1572004 libsoup3_3.6.6.orig.tar.xz
10a014515e901c392b49b623b0ff7301fb5717b3 30820 libsoup3_3.6.6-1.debian.tar.xz
959e4e9c137f0665fae0ae3ba5a756ae3a0faa6b 13682 libsoup3_3.6.6-1_source.buildinfo
Checksums-Sha256:
a0f7ab4f00cacf59540c29835c69e82600636ce1e197e951b68ed411bd649b38 2946 libsoup3_3.6.6-1.dsc
51ed0ae06f9d5a40f401ff459e2e5f652f9a510b7730e1359ee66d14d4872740 1572004 libsoup3_3.6.6.orig.tar.xz
8a90522e2c82c1a2ec912b66252dbf81525e3529cb14baa22ec144f84b534045 30820 libsoup3_3.6.6-1.debian.tar.xz
476d841ddae400ded4d3a540ea04a9da790570cd02fbc1351befebf203b31747 13682 libsoup3_3.6.6-1_source.buildinfo
Files:
e0c82d27275a79bdbef63373cb06302d 2946 devel optional libsoup3_3.6.6-1.dsc
9e07742595800ecf301eafb52300dd89 1572004 devel optional libsoup3_3.6.6.orig.tar.xz
f8b0ab09292d5d082cdaa9dabfe0155e 30820 devel optional libsoup3_3.6.6-1.debian.tar.xz
5ecc2fe8eef03e974513a402d7424a23 13682 devel optional libsoup3_3.6.6-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=mhvj
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-gnome-maintainers/attachments/20260214/471b04af/attachment.sig>
More information about the pkg-gnome-maintainers
mailing list