Accepted dpkg 1.21.23 (source) into oldstable-proposed-updates

Sun, 03 May 2026 13:04:56 -0700 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 07 Mar 2026 13:15:41 +0100
Source: dpkg
Architecture: source
Version: 1.21.23
Distribution: bookworm
Urgency: medium
Maintainer: Dpkg Developers <[email protected]>
Changed-By: Guillem Jover <[email protected]>
Closes: 1061404 1065575 1070010 1107971 1108192 1129722
Changes:
 dpkg (1.21.23) bookworm; urgency=medium
 .
   [ Guillem Jover ]
   * dpkg-deb: Fix cleanup for control member with restricted directories.
     Reported by zhutyra on HackerOne. Fixes CVE-2025-6297.
   * Perl modules:
     - Dpkg::BuildDriver::DebianRules: Fix uninitialized Perl variables.
       Closes: #1107971
     - Dpkg::BuildDriver::DebianRules: Fix R³ dpkg/target/<target> values
       handling.
   * Code internals:
     - libdpkg: Fix varbuf memory leak in pkg_source_version().
     - dpkg-deb: Initialize threads_max in no-uniform-compression mode.
     - libdpkg: Handle tar long GNU names and links not being NUL terminated.
       Closes: #1061404
     - libdpkg: Do not segfault when adding triggers in no-act mode.
       Closes: #1108192
     - libdpkg: Terminate zstd decompression when we have no more data.
       Reported by Yashashree Gund <[email protected]>. Closes: #1129722
       Fixes CVE-2026-2219.
   * Build system:
     - Build gitlab CI images for bookworm instead of sid.
   * Localization:
     - Fix typos in Swedish man pages translations. Closes: #1065575
     - Update Swedish translations.
       Thanks to Peter Krefting <[email protected]>. Closes: #1070010
 .
   [ Helge Kreutzmann ]
   * Localization:
     - Update German man pages translation.
Checksums-Sha1:
 cdecb1516be68eac05aa87a4effb5beec9a8c681 3160 dpkg_1.21.23.dsc
 49c90eac084e5120f2d34fc9bdff20f23d6f182c 5422988 dpkg_1.21.23.tar.xz
 4c0270815fb416c3018cc54a0a4bfae7cebe1587 8459 dpkg_1.21.23_amd64.buildinfo
Checksums-Sha256:
 1c126e21ec723002e767d8e7855793d5b26aab024295924db0835b4fd707ed6a 3160 
dpkg_1.21.23.dsc
 fb14678feb1129380c6ca1d0facffa56db16db0c4f497b902e703a6f369291c1 5422988 
dpkg_1.21.23.tar.xz
 db000421bc038ac70b6485837677da3e0a4f9512f990e05bc788060b40ba16d0 8459 
dpkg_1.21.23_amd64.buildinfo
Files:
 0fe798b44d2493790c6bd15f42cbc622 3160 admin required dpkg_1.21.23.dsc
 206d519e48a45a8c74583491e596aa58 5422988 admin required dpkg_1.21.23.tar.xz
 2522be8596a15222285adc4105587a4a 8459 admin required 
dpkg_1.21.23_amd64.buildinfo


-----BEGIN PGP SIGNATURE-----
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=XFl7
-----END PGP SIGNATURE-----

Attachment: pgpxocACueVc3.pgp
Description: PGP signature

Reply via email to