Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted fuse3 3.18.2-1 (source) into unstable
Date: Sat, 21 Mar 2026 07:50:09 +0000
Signed by: Laszlo Boszormenyi <gcs@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 21 Mar 2026 08:16:43 +0100
Source: fuse3
Architecture: source
Version: 3.18.2-1
Distribution: unstable
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changes:
 fuse3 (3.18.2-1) unstable; urgency=high
 .
   * New upstream release:
     - fixes CVE-2026-33150, use-after-free vulnerability in the io_uring
       subsystem,
     - fixes CVE-2026-33179, NULL pointer dereference and memory leak in
       fuse_uring_init_queue() .
Checksums-Sha1:
 c7787ad55659693512be51c98048a6fd4cd194aa 2395 fuse3_3.18.2-1.dsc
 f37e0b1efb4309fa07b1c4678fb4ab33fcd7302b 4933779 fuse3_3.18.2.orig.tar.gz
 4c6d71df77b611b9358fe755c43408476f99052a 314 fuse3_3.18.2.orig.tar.gz.asc
 2b2e90f2905c82af0c099814aa283b8fa86aa3f2 11884 fuse3_3.18.2-1.debian.tar.xz
Checksums-Sha256:
 161ea130b835e26a87a51ce50b8e7354e042563d4c575feead126eccb9633bc6 2395 fuse3_3.18.2-1.dsc
 f01de85717e20adf5f98aff324acd85dd73d61a5ca3834d573dcf0bd6e54a298 4933779 fuse3_3.18.2.orig.tar.gz
 6007147a98d51e84b8e4a501eec65dc1207e3adb34b4b4431bd7126f9c52bedb 314 fuse3_3.18.2.orig.tar.gz.asc
 afb317c24228560fb52778f04993519b5652523977d93370cac43b835bc4fb8a 11884 fuse3_3.18.2-1.debian.tar.xz
Files:
 cd85387391f9c4c892810148dcd1c608 2395 utils optional fuse3_3.18.2-1.dsc
 43c6f6cd2c1368d916f6fb080eb39cbb 4933779 utils optional fuse3_3.18.2.orig.tar.gz
 6c7b5b47dd36dbff00b4d5a60fcee54b 314 utils optional fuse3_3.18.2.orig.tar.gz.asc
 a91b7cf16df2849ab618b5101d758b4b 11884 utils optional fuse3_3.18.2-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=0UVV
-----END PGP SIGNATURE-----

News for package fuse3