-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 06 May 2024 13:50:11 +0100
Source: glib2.0
Binary: libglib2.0-data libglib2.0-doc
Architecture: all
Version: 2.66.8-1+deb11u2
Distribution: bullseye-security
Urgency: high
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Description:
 libglib2.0-data - Common files for GLib library
 libglib2.0-doc - Documentation files for the GLib library
Changes:
 glib2.0 (2.66.8-1+deb11u2) bullseye-security; urgency=high
 .
   * d/patches: Backport GDBus fixes from 2.80.1
     - If local users send signals on the D-Bus system bus that spoof a
       trusted sender, do not deliver them to signal subscriptions for the
       trusted sender's well-known bus name (CVE-2024-34397)
     - Fix a use-after-free when subscribing to signals with an arg0
       match rule, originally from 2.79.0 and necessary to make the test
       for CVE-2024-34397 pass reliably
     - Add a local backport of g_set_str(), required by the above
Checksums-Sha1:
 6df8e5c9523983aacd845eb8a0e668fe8849b09e 9073 glib2.0_2.66.8-1+deb11u2_all-buildd.buildinfo
 863b8e5f44455a3cb053dbabfb85fde97d9b24da 1178084 libglib2.0-data_2.66.8-1+deb11u2_all.deb
 f579af8d5e74cc380e2f81dfa99cb1870e218a0b 1501904 libglib2.0-doc_2.66.8-1+deb11u2_all.deb
Checksums-Sha256:
 c1820c1ce8d4cdb623c68a305763fe6d961e9a80b13171dfa41612226bd4815b 9073 glib2.0_2.66.8-1+deb11u2_all-buildd.buildinfo
 a36dcbfba7550ff9d7b9941fd8a3a6dbc974ba6c2eb9e10d0c4e86e945cb62c6 1178084 libglib2.0-data_2.66.8-1+deb11u2_all.deb
 529a941a4564ab4362f21ddfa0ea723b9d2fa12e39d8136ce9737a0679a1acbc 1501904 libglib2.0-doc_2.66.8-1+deb11u2_all.deb
Files:
 7eed59d2b0c95a9ee6e6483c473d974b 9073 libs optional glib2.0_2.66.8-1+deb11u2_all-buildd.buildinfo
 c617145ad63455351e16925401cca370 1178084 libs optional libglib2.0-data_2.66.8-1+deb11u2_all.deb
 32a3c9f1e0fa1945d782e8bf1ec06795 1501904 doc optional libglib2.0-doc_2.66.8-1+deb11u2_all.deb

-----BEGIN PGP SIGNATURE-----
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=LxAt
-----END PGP SIGNATURE-----