-
46985a2a
by Aurelien Jarno at 2024-01-21T13:01:52+01:00
debian/patches/any/local-CVE-2023-6246.patch: Fix a heap buffer overflow in __vsyslog_internal (CVE-2023-6246).
-
880368e7
by Aurelien Jarno at 2024-01-21T13:03:03+01:00
debian/patches/any/local-CVE-2023-6779.patch: Fix an off-by-one heap buffer overflow in __vsyslog_internal (CVE-2023-6779).
-
f45299bd
by Aurelien Jarno at 2024-01-21T13:04:12+01:00
debian/patches/any/local-CVE-2023-6780.patch: Fix an integer overflow in __vsyslog_internal (CVE-2023-6780).
-
c0c877ed
by Aurelien Jarno at 2024-01-21T15:27:42+01:00
debian/patches/any/local-qsort-memory-corruption.patch: Fix a memory corruption in qsort() when using nontransitive comparison functions.
-
c3de4796
by Aurelien Jarno at 2024-01-23T21:57:17+01:00
releasing package glibc version 2.36-9+deb12u4
-
bf4858f7
by Aurelien Jarno at 2024-02-09T19:29:10+01:00
debian/patches/git-updates.diff: update from upstream stable branch:
* debian/patches/git-updates.diff: update from upstream stable branch:
- any/local-CVE-2023-4911.patch: upstreamed.
- any/local-CVE-2023-6246.patch: upstreamed.
- any/local-CVE-2023-6779.patch: upstreamed.
- any/local-CVE-2023-6780.patch: upstreamed.
- Revert fix to always call destructors in reverse constructor order due
to unforeseen application compatibility issues.
- Fix a DTV corruption due to a reuse of a TLS module ID following dlclose
with unused TLS.
- Fix the DTV field load on x32.
- Fix the TCB field load on x32.