Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted glibc 2.37-19 (source) into unstable
Date: Sat, 27 Apr 2024 22:29:25 +0000
Signed by: Aurelien Jarno <aurel32@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 27 Apr 2024 23:59:01 +0200
Source: glibc
Architecture: source
Version: 2.37-19
Distribution: unstable
Urgency: medium
Maintainer: GNU Libc Maintainers <debian-glibc@lists.debian.org>
Changed-By: Aurelien Jarno <aurel32@debian.org>
Changes:
 glibc (2.37-19) unstable; urgency=medium
 .
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - Fix a stack-based buffer overflow in nscd netgroup cache
       (CVE-2024-33599).
     - Fix a null pointer dereferences in nscd after failed netgroup cache
       insertion (CVE-2024-33600).
     - Fix a DoS in nscd in case of memory allocation failure (CVE-2024-33601).
     - Fix a memory corruption in nscd when the underlying NSS callback
       function does not use the buffer space to store all strings
       (CVE-2024-33602).
Checksums-Sha1:
 05db0e78bf1c2a7fa35d4b8022339abdeae6d4e3 9043 glibc_2.37-19.dsc
 3c0c505b6b93c2b3e5d238aac83304455e3a8e92 426236 glibc_2.37-19.debian.tar.xz
 dc8c1ac68146b602ca68775c0792f904b183d4bd 10065 glibc_2.37-19_source.buildinfo
Checksums-Sha256:
 fdd01a3e5042d03352ed7d3d6ffa9533a0a72770c5b0c3cf951bc7e0024ff882 9043 glibc_2.37-19.dsc
 841bf413c775ae4bd0fc463b86473e0b36476b4b5d1d013ec624e10d0dac6abe 426236 glibc_2.37-19.debian.tar.xz
 fe3eccee93c5664ffcedcda8dc41dc61dedafee7aad1ff26dfa52afd4c791ce2 10065 glibc_2.37-19_source.buildinfo
Files:
 ae89885c4862b5c266a2d6a7e3220734 9043 libs required glibc_2.37-19.dsc
 7f4aa2c6ab187bd2802da368b33360c9 426236 libs required glibc_2.37-19.debian.tar.xz
 7cd5b7925a39640cb0133e9f3c2106ce 10065 libs required glibc_2.37-19_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=cr+b
-----END PGP SIGNATURE-----

News for package glibc