Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted glib2.0 2.66.7-2 (source) into unstable
Date: Thu, 11 Mar 2021 12:48:26 +0000
Signed by: Simon McVittie <smcv@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 11 Mar 2021 10:23:38 +0000
Source: glib2.0
Architecture: source
Version: 2.66.7-2
Distribution: unstable
Urgency: medium
Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Closes: 984969
Changes:
 glib2.0 (2.66.7-2) unstable; urgency=medium
 .
   * d/changelog: Add bug numbers for integer overflows in previous versions
   * Add patches to fix a symlink attack affecting file-roller.
     When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to
     replace a path that is a dangling symlink, previously it would have also
     created the target of the symlink as an empty file, which could
     conceivably be security-sensitive if the symlink is attacker-controlled.
     (Closes: #984969)
Checksums-Sha1:
 04da51880c9c4f28b10e520e71213d7f41b32c89 3386 glib2.0_2.66.7-2.dsc
 a81a7084b58b8df0e3a104abff245e4504fc1568 101748 glib2.0_2.66.7-2.debian.tar.xz
 ebce00137a2b0a601ec75b18aaf31769117ad406 7855 glib2.0_2.66.7-2_source.buildinfo
Checksums-Sha256:
 549f7f21ece26b3074cbb4560f37719d89c5356464a0f65cc18207b6de096793 3386 glib2.0_2.66.7-2.dsc
 c276bc7e31fbe0d3285faac4a4792dab4ab90ef953ba416adc33601c71355c53 101748 glib2.0_2.66.7-2.debian.tar.xz
 15106f40dd930f0d2976db1ae1f3966827be0d599382e4187a04994ab009bb8f 7855 glib2.0_2.66.7-2_source.buildinfo
Files:
 eef527563a08e3fc0e53e397ffb38ee0 3386 libs optional glib2.0_2.66.7-2.dsc
 af220345a6250f46a481415542a4544c 101748 libs optional glib2.0_2.66.7-2.debian.tar.xz
 5033d3c10869491e455f7bcb578fb7b3 7855 libs optional glib2.0_2.66.7-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=txyC
-----END PGP SIGNATURE-----

News for package glib2.0