Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted libinput 1.16.4-3+deb11u1 (source) into oldoldstable-security
Date: Fri, 12 Jun 2026 02:40:17 +0000
Signed by: Santiago Ruano Rincón <santiago@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 11 Jun 2026 11:41:47 -0300
Source: libinput
Architecture: source
Version: 1.16.4-3+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian X Strike Force <debian-x@lists.debian.org>
Changed-By: Santiago Ruano Rincón <santiagorr@riseup.net>
Changes:
 libinput (1.16.4-3+deb11u1) bullseye-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * Fix CVE-2022-1215: format string vulnerability
   * Add patch: util: don't call function in macro argument
   * Add patch: util: sanitize control characters in str_sanitize()
   * Fix CVE-2026-50292: Add libinput-device-group: sanitize phys before
     printing it patch
   * Add d/salsa-ci.yml using the LTS Team's bullseye recipe
Checksums-Sha1:
 d82b251c2318e1b6c70847e00e61818dcfcbe3d9 2122 libinput_1.16.4-3+deb11u1.dsc
 a13bcb2ae0789ced34629d9bf03d63a79a3a16e9 596028 libinput_1.16.4.orig.tar.xz
 e2c15af317f245dc27120471ca959d9386c85d0d 195 libinput_1.16.4.orig.tar.xz.asc
 a40ec22fb1e5a479331262499da1e98fcca3ef86 15528 libinput_1.16.4-3+deb11u1.debian.tar.xz
 379acb62d0199900bd06f5f65fd6091cf51dc0c4 5239 libinput_1.16.4-3+deb11u1_source.buildinfo
Checksums-Sha256:
 31137bed74c31240fa6e9c0f93cf1b689e9ba6fc9c0338ea901f7f01e94ff3f6 2122 libinput_1.16.4-3+deb11u1.dsc
 65923a06d5a8970e4a999c4668797b9b689614b62b1d44432ab1c87b65e39e29 596028 libinput_1.16.4.orig.tar.xz
 6d1f8b451a123fe148f4ec2389b934b90b541d8123b6cf0fec3d7106097034c8 195 libinput_1.16.4.orig.tar.xz.asc
 12d38c134dad7eadee078b26440c755a85a0985b9ae48d39d51810a7431f7544 15528 libinput_1.16.4-3+deb11u1.debian.tar.xz
 25688fc560a10425bb568f6070b5b36a80a81895b57a89c514f287d98e148ec7 5239 libinput_1.16.4-3+deb11u1_source.buildinfo
Files:
 f01657d3e7814b6ed13030798c451f8b 2122 libs optional libinput_1.16.4-3+deb11u1.dsc
 1fdc670e62a08bcebceabd23af3d639a 596028 libs optional libinput_1.16.4.orig.tar.xz
 a76c44db39d7080bb1c70c70e78cc27a 195 libs optional libinput_1.16.4.orig.tar.xz.asc
 b7082f96063fdc50815a2ac0e626b7d3 15528 libs optional libinput_1.16.4-3+deb11u1.debian.tar.xz
 9659c1e989472967a2e57f127045290f 5239 libs optional libinput_1.16.4-3+deb11u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iIwEARYKADQWIQR+lHTq7mkJOyB6t2Un3j1FEEiG7wUCaituHhYcc2FudGlhZ29y
ckByaXNldXAubmV0AAoJECfePUUQSIbve4EBAPGK84lKsMA1ETlfVdVVFVcePEdD
ee254A+rkaOrnwfPAQCCB+Tw5W/4+Hx97xI/Bqyzwl7MRnobU+LIaL7c2yvmDw==
=lkfh
-----END PGP SIGNATURE-----

News for package libinput