Adding patchinfo patchinfo.20240821152649764580.269002615871826

2024-09-03 14:04:07 +02:00 · 2024-09-03 14:04:07 +02:00 · b42933619f
commit b42933619f
parent fd130a863c
3 changed files with 18 additions and 2 deletions
--- a/.gitmodules
+++ b/.gitmodules
@ -672,7 +672,7 @@
 	url = ../../pool/glib-networking
 [submodule "glib2"]
 	path = glib2
-	url = ../../pool/glib2
+	url = ../../ALP-pool/glib2
 [submodule "glibc"]
 	path = glibc
 	url = ../../ALP-pool/glibc
--- a/2
+++ b/2
@ -1 +1 @@
-Subproject commit d1f8aeca547afa3dd031f3ef214784a285ff6ed6
+Subproject commit 90313a7f8bda746907b5fc2f468c8e118d6c429f
--- a/patchinfo.20240821152649764580.269002615871826/_patchinfo
+++ b/patchinfo.20240821152649764580.269002615871826/_patchinfo
@ -0,0 +1,16 @@
+<patchinfo>
+  <!-- generated from request(s) 341779 -->
+  <issue tracker="bnc" id="1224044">VUL-0: CVE-2024-34397: glib2: signal subscriptions are vulnerable to unicast spoofing</issue>
+  <issue tracker="cve" id="2024-34397"/>
+  <packager>mgorse</packager>
+  <rating>low</rating>
+  <category>security</category>
+  <summary>Security update for glib2</summary>
+  <description>This update for glib2 fixes the following issues:
+
+- Fixed a possible use after free regression introduced by CVE-2024-34397 patch (bsc#1224044).
+</description>
+  <package>glib2</package>
+  <package>glib2:doc</package>
+  <seperate_build_arch/>
+</patchinfo>