-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 18 Aug 2025 09:27:51 +0100
Source: glib2.0
Binary: libglib2.0-0 libglib2.0-0-dbgsym libglib2.0-bin libglib2.0-bin-dbgsym libglib2.0-dev libglib2.0-dev-bin libglib2.0-dev-bin-dbgsym libglib2.0-tests libglib2.0-tests-dbgsym libglib2.0-udeb
Architecture: mips64el
Version: 2.74.6-2+deb12u7
Distribution: bookworm
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-03) <buildd_mips64el-mipsel-osuosl-03@buildd.debian.org>
Changed-By: Simon McVittie <smcv@debian.org>
Description:
 libglib2.0-0 - GLib library of C routines
 libglib2.0-bin - Programs for the GLib library
 libglib2.0-dev - Development files for the GLib library
 libglib2.0-dev-bin - Development utilities for the GLib library
 libglib2.0-tests - GLib library of C routines - installed tests
 libglib2.0-udeb - GLib library of C routines - minimal runtime (udeb)
Closes: 1065022 1104930 1110640 1110696
Changes:
 glib2.0 (2.74.6-2+deb12u7) bookworm; urgency=medium
 .
   * d/p/gstring-carefully-handle-gssize-parameters.patch,
     d/p/gstring-Make-len_unsigned-unsigned.patch:
     Add patches from upstream to fix a buffer underflow in GString.
     This could cause a memory overwrite if a program handles extremely large
     text strings of an attacker-controlled length. The required string length
     would be close to 2 GiB on 32-bit and the bug is not believed to be
     practically feasible to exploit on 64-bit. (CVE-2025-4373)
     (Closes: #1104930)
   * d/p/glib-gfileutils.c-use-64-bits-for-value-in-get_tmp_file.patch,
     d/p/gfileutils-fix-computation-of-temporary-file-name.patch:
     Add patches from upstream to fix a buffer underflow in get_tmp_file().
     This is used in g_mkstemp(), g_mkdtemp() and similar functions, and
     could cause a crash or possibly arbitrary file overwrites (believed to
     be unlikely to be exploitable in practice) if a long-running program
     creates more than 2 billion temporary files. (CVE-2025-7039)
     (Closes: #1110640)
   * d/libglib2.0-0.postrm.in:
     Rewrite postrm for safer upgrade behaviour, based on the version
     in unstable and proposed for inclusion in trixie:
     - Only remove giomodule.cache during purge, not during remove.
       This matches the behaviour of gschemas.compiled and avoids a window
       between old-postrm and new-postinst during which giomodule.cache is
       missing, breaking applications that need GIO modules.
     - Don't remove gschemas.compiled or giomodule.cache during purge
       if there is evidence that they might still be needed
       (Closes: #1065022, #1110696):
       + don't remove them if ${libdir}/glib-2.0 still exists, for example
         provided by libglib2.0-0t64 after upgrading to trixie;
       + don't remove gschemas.compiled if at least one GSettings schema
         still exists;
       + don't remove giomodule.cache if at least one GIO module still exists
     - Refactoring to support the above
   * d/tests/1065022-futureproofing:
     Add a test for #1065022, modified from the version in unstable and
     proposed for inclusion in trixie
Checksums-Sha1:
 f282ae94136cf148a106d126972a01c74402520b 11438 glib2.0_2.74.6-2+deb12u7_mips64el-buildd.buildinfo
 97cbaebb01483c4acee418d75b2969144381116e 4149660 libglib2.0-0-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 93a8dbc76d941bd5da3755f6e4cf67fa948f6dd5 1191152 libglib2.0-0_2.74.6-2+deb12u7_mips64el.deb
 37f0e3273c530dcd87c80b5e91a588dfa22c3219 151096 libglib2.0-bin-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 f87c5e1362ab2a2f6f4017e42b65362d3d8d9ed9 104744 libglib2.0-bin_2.74.6-2+deb12u7_mips64el.deb
 8027f8d858983da38e22175b2cb2ade47f84efbc 73624 libglib2.0-dev-bin-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 d88a93ce0d460c5a5706ea6efd329b29fa4b84bc 151160 libglib2.0-dev-bin_2.74.6-2+deb12u7_mips64el.deb
 f18c9ebf48b69378c3b20e37add2d891b4d00a06 1738164 libglib2.0-dev_2.74.6-2+deb12u7_mips64el.deb
 72e467fc497c8e13e907909c56d9a36e9916f4d6 4632984 libglib2.0-tests-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 fbfc102533266138bddeecd99734694a5cc3c2f4 1549016 libglib2.0-tests_2.74.6-2+deb12u7_mips64el.deb
 f4bc8cce0abfcba973795429f3188386b4772a8e 2059624 libglib2.0-udeb_2.74.6-2+deb12u7_mips64el.udeb
Checksums-Sha256:
 831ec3e09b0fb4f47fd59601fe1f20df6f597248b1ca6115f8c568e1ff903fbe 11438 glib2.0_2.74.6-2+deb12u7_mips64el-buildd.buildinfo
 8e18809fab06b7acc3d9bae7701b94cd90a219b415b47859ae5aec4b63527325 4149660 libglib2.0-0-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 a878394724112854d344bdefa7e81fa5570510e92051a66c0c971a2bdeedef96 1191152 libglib2.0-0_2.74.6-2+deb12u7_mips64el.deb
 50de65379004286a92a07bfd2b2ca70f2c0034e5aa6708ebc502faeb2d308634 151096 libglib2.0-bin-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 fb3d6cbc55de1aa1fbddb365ed10a8f5db858d0c8561036c0525333f695499fc 104744 libglib2.0-bin_2.74.6-2+deb12u7_mips64el.deb
 13c467fdf2a60ec23d416868fcf04914a404796cba6b30ad552c03594f41843f 73624 libglib2.0-dev-bin-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 2e0a37fd59951ec381ce7028579719af4b4c207efa0edea2f70b11e92c1edae5 151160 libglib2.0-dev-bin_2.74.6-2+deb12u7_mips64el.deb
 5ab777a81d1da57f7b21aef9275e47d1c902db6ec80c2f9a192e1f83505b1269 1738164 libglib2.0-dev_2.74.6-2+deb12u7_mips64el.deb
 76d3664bd14874bbe832043cf0bacecb4c63525486ec2ad105e1df83a0150466 4632984 libglib2.0-tests-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 99588d433f038d6ea9df441e906dba386cea7db7578d949ec55fe8588044aaae 1549016 libglib2.0-tests_2.74.6-2+deb12u7_mips64el.deb
 0e3a1fbf1d0fecfd125645e2eb4fb898c372b156f95f259e4612da15a36efa7e 2059624 libglib2.0-udeb_2.74.6-2+deb12u7_mips64el.udeb
Files:
 7803a0cc3805c6cbab4d80803af96a2f 11438 libs optional glib2.0_2.74.6-2+deb12u7_mips64el-buildd.buildinfo
 2aac5d0ae4ff319e55f271f7b235a246 4149660 debug optional libglib2.0-0-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 0d16c75fa70f1ebc527ca404ff2f2fd1 1191152 libs optional libglib2.0-0_2.74.6-2+deb12u7_mips64el.deb
 f38abf67ce5800da1bbdf8a51d7bd46b 151096 debug optional libglib2.0-bin-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 868f99f2f784fc09f3ddba6588530941 104744 misc optional libglib2.0-bin_2.74.6-2+deb12u7_mips64el.deb
 c8bbd28a5aa88f26b511c672d10cf98b 73624 debug optional libglib2.0-dev-bin-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 12361e752aa3bc0f3feda44b370ec13a 151160 libdevel optional libglib2.0-dev-bin_2.74.6-2+deb12u7_mips64el.deb
 212e4345d8ca38da85df2e51ca5c9343 1738164 libdevel optional libglib2.0-dev_2.74.6-2+deb12u7_mips64el.deb
 3762812bdb946371f4d6b006dcc1e907 4632984 debug optional libglib2.0-tests-dbgsym_2.74.6-2+deb12u7_mips64el.deb
 aeb61b21a2bc0e3d0c0200c53d75841e 1549016 libs optional libglib2.0-tests_2.74.6-2+deb12u7_mips64el.deb
 f82cca320a1d8606ba80061e40b54730 2059624 debian-installer optional libglib2.0-udeb_2.74.6-2+deb12u7_mips64el.udeb

-----BEGIN PGP SIGNATURE-----
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=TQj8
-----END PGP SIGNATURE-----