Back to glib2.0 PTS page

Accepted glib2.0 2.80.0-10 (source) into unstable

To: debian-devel-changes@lists.debian.org
Subject: Accepted glib2.0 2.80.0-10 (source) into unstable
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Tue, 07 May 2024 14:35:38 +0000
Debian: DAK
Debian-architecture: source
Debian-archive-action: accept
Debian-changes: glib2.0_2.80.0-10_source.changes
Debian-source: glib2.0
Debian-suite: unstable
Debian-version: 2.80.0-10
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id:Content-Type: Subject:MIME-Version:To:Reply-To:From:Cc:Content-Transfer-Encoding:Content-ID :Content-Description:In-Reply-To:References; bh=cj1THFfMHagJdKTUXwZYIXncaaBQ11gn6OhTdBDj0jM=; b=oHCLwOFU1sR+LAb+Qj03aKiv6o jH3LWIR94LqulItf+TqbxUsCK+hrFFS2I/CR+3aepMawFRCX6zchUGvBWI0aEARpCZGQ9HH+S0Fpe qWgNRqAvoUQACl9XCjMVPx8/kMps6ov2fSNl91Minfqr6DKU+r/NvovvoAB9TbNbi73EplFRCBhKx dNtPqn6cPjj1P6akAM3RUSAsK5gz0dLcWPKUyQmuq5uvV7OCuYBiP36TAqwrMoSiTLiIZ7rxvpSrK DANHQXdyHMUbYFIgIEIG5xUwRdA2WJJymo5RQ7x59sicvEt7CKbfmZS6NAeLh9eUWz4KY93LOHqpw Khd5vJ6g==;
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1s4Lus-00FP5P-Kn@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 06 May 2024 23:06:18 +0100
Source: glib2.0
Architecture: source
Version: 2.80.0-10
Distribution: unstable
Urgency: high
Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Changes:
 glib2.0 (2.80.0-10) unstable; urgency=high
 .
   * Team upload
   * d/patches: Add GDBus security fixes intended to be in 2.80.1
     - If local users send signals on the D-Bus system bus that spoof a
       trusted sender, do not deliver them to signal subscriptions for the
       trusted sender's well-known bus name (CVE-2024-34397)
     - Fix a use-after-free when subscribing to signals with an arg0
       match rule, originally from 2.79.0 and necessary to make the test
       for CVE-2024-34397 pass reliably
     - Add a local backport of g_set_str(), required by the above
     - Add proposed fix for a race condition that can cause a unit test
       to regress after the above
   * d/control: Add Breaks on gnome-shell (<< 44.9-2~).
     The security fix breaks screen recording and screencasting in older
     versions, so we should make sure both changes migrate together.
   * Set high urgency for security fix
Checksums-Sha1:
 339a181b5f123647bcae04f6a0bdc4759d6e7ebf 4651 glib2.0_2.80.0-10.dsc
 e91abd133e52da2ed435f356a55e4618178e7eeb 149904 glib2.0_2.80.0-10.debian.tar.xz
 04238bc496b17bf9ba0c7d3332924fd5b44e00c3 7351 glib2.0_2.80.0-10_source.buildinfo
Checksums-Sha256:
 ada6cc44646002b4c7020618d6ce9f610797b8f9945a4029dedeff075b0d64df 4651 glib2.0_2.80.0-10.dsc
 1096ba947c4e14814039c907f3a688bb8a0de05b810934c6d6cf8aae5511653e 149904 glib2.0_2.80.0-10.debian.tar.xz
 5fa0ef145da98e5ae18996af21b21e38d3acd2cdd1a6b8e7be8978da78243f70 7351 glib2.0_2.80.0-10_source.buildinfo
Files:
 94de72b5c21e1a12f4abccedc316808b 4651 libs optional glib2.0_2.80.0-10.dsc
 d8bcb8f7d45bcf26562ce10cf1991eba 149904 libs optional glib2.0_2.80.0-10.debian.tar.xz
 e704d2054bd642d79a0a51c7acbeaf07 7351 libs optional glib2.0_2.80.0-10_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=uAWg
-----END PGP SIGNATURE-----

Attachment: pgpC7DYTPW04l.pgp
Description: PGP signature