Back to connman PTS page

Accepted connman 1.36-2.1~deb10u3 (source) into oldstable

To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
Subject: Accepted connman 1.36-2.1~deb10u3 (source) into oldstable
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Tue, 13 Sep 2022 08:30:20 +0000
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=6OvVxoZFsvWiZTMY5vWjh7PUaeSZ5uaf930TWc8dpVc=; b=PwwKZhRVjMJa1yhapSQEknP+vB 7Nye+T+r6tzauTcTtkzirZ9iaZjBhE1Di+57ukCnPEOz9iCWyhApkrzuRS1wV38pxN4g82MtfaSDA eThhCzRMDk+Tl1yV5NYza2LX6pQtOf+l20WVwDUHUP264CTtVjGK2qk3MVpa7IVHcSm49/Z143vNV jcJWwMJbljulmvhlhUFSlXISxWWJYGejZVrpVJjc5InZuNLoX+uHrdIM+bIwwfQgQturRO7G3J404 caGoniWhOhvyeBNnEA4HEcF6rAJjEtNDsF0BJ5fWYgkUNnC2gt5V14nA9z7QZpSdqXwjewYE+nH5C LSbsTlNQ==;
Mail-followup-to: debian-lts@lists.debian.org
Message-id: <E1oY1JE-0003mD-J1@seger.debian.org>
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 13 Sep 2022 09:14:43 +0100
Source: connman
Architecture: source
Version: 1.36-2.1~deb10u3
Distribution: buster-security
Urgency: high
Maintainer: Alexander Sack <asac@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Closes: 1016976
Changes:
 connman (1.36-2.1~deb10u3) buster-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2022-32292: Prevent an issue where remote attackers able to send HTTP
     requests to the gweb component were able to exploit a heap-based buffer
     overflow in the received_data function to execute code. (Closes: #1016976)
   * CVE-2022-32293: Prevent a man-in-the-middle attack against a WISPR HTTP
     query which could be used to trigger a use-after-free in WISPR handling,
     leading to crashes or even code execution. (Closes: #1016976)
Checksums-Sha1:
 40888354403736ecb002488420cfe7fc2321ac6c 2222 connman_1.36-2.1~deb10u3.dsc
 99ec92561ea2b233d3566a868ebf90f6f1843f90 19012 connman_1.36-2.1~deb10u3.debian.tar.xz
 4302e1c853d9f474fe4fa23e99d35bfc7e80b551 10214 connman_1.36-2.1~deb10u3_amd64.buildinfo
Checksums-Sha256:
 dfff024fa7872ae6d8ef000005b8dd4d34c4be71041504ac2086b04ef95cc0ca 2222 connman_1.36-2.1~deb10u3.dsc
 85ad32982125563175ae22bc71b82608db471bec5f25e1bc101512fe0fa2ef0a 19012 connman_1.36-2.1~deb10u3.debian.tar.xz
 b7283a2da19ab2e694bc9b97c62ecd9d98b6f9851bd5c4a6f88b3ccee89adccc 10214 connman_1.36-2.1~deb10u3_amd64.buildinfo
Files:
 992838b8d16d96ea718d2b73ce4f4475 2222 net optional connman_1.36-2.1~deb10u3.dsc
 368439464457705a5288d87c6862d6c8 19012 net optional connman_1.36-2.1~deb10u3.debian.tar.xz
 b684a99c65571d663c703484426bb5ea 10214 net optional connman_1.36-2.1~deb10u3_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=MSP1
-----END PGP SIGNATURE-----