Accepted webkit2gtk 2.36.3-1~deb11u1 (source) into proposed-updates->stable-new, proposed-updates
- To: debian-changes@lists.debian.org
- Subject: Accepted webkit2gtk 2.36.3-1~deb11u1 (source) into proposed-updates->stable-new, proposed-updates
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Sat, 18 Jun 2022 10:32:46 +0000
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id:Subject: Content-Transfer-Encoding:Content-Type:MIME-Version:To:Reply-To:From:Cc: Content-ID:Content-Description:In-Reply-To:References; bh=Ml47BlYnemLi3/f9qm94rZUSVzG8w4wn0JILcMj0Pco=; b=IZ77XT8xLUTKc//EvPA/T1wvJ0 W6RqFOPY/xpz6N1CAeBH3KeJm3frBvXqPWrk07Ispy8uBYd7RcC4/85oaoiuOccmCGUwyDQ8fYHjD cxFB5eBy3NXvrt2Pm9Eb2CuxxAYr4LOXbDemlxttpE3R6EHlmcP+o3kblF3EFDitUSNXsPgBtLxnz 1aGg/8C0Ca+tbA4yLcKwieNXL83SELKtjlYsTuaCWRksijeCiqXeLvPDuPiTkYpcx6aLOAP798MSW XzP5jP1NnhaJtWvxtXx3uPKNUk92743sdbNwgw8ZB4j1aGGvb0D80cZzoyBXWLjnUvGaJicE+92xd k9/5Go/g==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1o2Vl0-000ARt-VL@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 31 May 2022 10:46:06 +0200
Source: webkit2gtk
Architecture: source
Version: 2.36.3-1~deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: Debian WebKit Maintainers <pkg-webkit-maintainers@lists.alioth.debian.org>
Changed-By: Alberto Garcia <berto@igalia.com>
Changes:
webkit2gtk (2.36.3-1~deb11u1) bullseye-security; urgency=high
.
* Rebuild for bullseye-security.
- This fixes CVE-2022-26700, CVE-2022-26709, CVE-2022-26716,
CVE-2022-26717, CVE-2022-26719, CVE-2022-30293 and CVE-2022-30294.
* gcc 10 segfaults when building webkit in some architectures (see
#1008098) so use clang instead. The exceptions are i386 and mipsel,
where gcc works fine but clang is the buggy one (see #1010329).
- debian/rules: Tell CMake to use clang.
- debian/control: Build depend on clang.
* Build libsoup2 packages only.
- debian/rules: Set ENABLE_SOUP3=NO.
- debian/control: Remove build dependency on libsoup3 and ccache and
remove the entries for all 4.1 API packages (soup3 build).
Checksums-Sha1:
28d1004d5bbc166b98646a60a9811b08f3c6e0f6 4265 webkit2gtk_2.36.3-1~deb11u1.dsc
59ee6ee820be360ad57391870fa158064091c525 26600236 webkit2gtk_2.36.3.orig.tar.xz
448db66cbd06864013cc265ddc01a13c3ef9f8f1 195 webkit2gtk_2.36.3.orig.tar.xz.asc
dddac2df03aa3c3ced604a77ee7c2a50cddac74b 76032 webkit2gtk_2.36.3-1~deb11u1.debian.tar.xz
d349781d64f8e70cd60083d3c8b21d00f5bca9b3 14668 webkit2gtk_2.36.3-1~deb11u1_source.buildinfo
Checksums-Sha256:
ac5a10822a1b80e1fb89d749bd505fd6b05760efe0ab00952d307ce7e9186527 4265 webkit2gtk_2.36.3-1~deb11u1.dsc
732fcf8c4ec644b8ed28b46ebbd7c1ebab9d9e0afea9bdf5e5d12786afc478d1 26600236 webkit2gtk_2.36.3.orig.tar.xz
f76c713e99bc4db5c7195fc9bb6fb22b7024bbf211b960130211d85d7234039b 195 webkit2gtk_2.36.3.orig.tar.xz.asc
33287d03d644fa6ce49a96d6a51148a80d201935a336e2b8eff2c07147f4762a 76032 webkit2gtk_2.36.3-1~deb11u1.debian.tar.xz
5100de8df7f20859273ac129d9d4abe267e8128bcaf072454e8c9fccbb821f93 14668 webkit2gtk_2.36.3-1~deb11u1_source.buildinfo
Files:
bd2065a402e77f59e7aaae6d81ab2356 4265 web optional webkit2gtk_2.36.3-1~deb11u1.dsc
8ad4b1bfbbe3115ee163a8b2ba7b908f 26600236 web optional webkit2gtk_2.36.3.orig.tar.xz
31d77d43feffc243b27d4bdd4e93761b 195 web optional webkit2gtk_2.36.3.orig.tar.xz.asc
91289ee4b955ba66be8ff286d906565a 76032 web optional webkit2gtk_2.36.3-1~deb11u1.debian.tar.xz
065a4d61f50b08cc653a44224d9d4172 14668 web optional webkit2gtk_2.36.3-1~deb11u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEEYrwugQBKzlHMYFizAAyEYu0C2AIFAmKV17QACgkQAAyEYu0C
2AJMQg//WeTqtQ+/yOdGUtJATDvdthh32nvm3Zc46rx0k6ol7EguNntxtDSfN0zj
8mXZxfGeLOjMOSxTTSGZB5hdFCn3nm7L/PFFO53jStU8G1kQT2hjysc5zqcMX+AE
G+k1xkO4LelsrPBrIbclWL5dkl0X3HfIX/d0W5TrjDe2BZPvIUP3J6PhfyvMdnaN
5J4vFYrJoAjFE+YnTQ21ZuZ+mKkCDX5HcMBFUASU9ZzDY88U/E3V72FZDKvzpy8X
zhPo5nHjZzsLb2ovC5kI7ZkmEpNz2JWMO0brw4X2Rby7YSvFLjx25+g8mE+308Yo
/KAK/OtlAQJRkOEAkR3NPILzH/9fQ7M61EPbsQexGEdwW+7r+2tgPK3RaOZLTXwZ
/KQzIzjYGFwpMY7B7bAGnBahYiJN6Eo5GSo4NlF8ylBGysEpsPpy5rQsqqswXBUQ
MLBeyT/hTlzeMCUqaTVzab9liBRX7GQNhcIdH4E54eh9yyZax4JZCoVg4kacS3q7
O+JG7hQBmwuKufp3RCp9VZ0CX5YVVJLj72X2syGhYqiRsJghD45HIcpMF1yPuxqh
MtlxVRNQVIyI5T/S11UlDEE0UQFHxm+36g7B/gQ7WuZcecw+bb0LveYarnW9bB6e
tgRIid+99Ff57yvMqP5vcM1wIKMIJH/M3jLtFTgpjSEYhC/22xA=
=Fl0p
-----END PGP SIGNATURE-----