From b42933619fe7236692e4409aebb1cafd9b7c9b6e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= Date: Tue, 3 Sep 2024 14:04:07 +0200 Subject: [PATCH] Adding patchinfo patchinfo.20240821152649764580.269002615871826 --- .gitmodules | 2 +- glib2 | 2 +- .../_patchinfo | 16 ++++++++++++++++ 3 files changed, 18 insertions(+), 2 deletions(-) create mode 100644 patchinfo.20240821152649764580.269002615871826/_patchinfo diff --git a/.gitmodules b/.gitmodules index 1cc456f..629d51c 100644 --- a/.gitmodules +++ b/.gitmodules @@ -672,7 +672,7 @@ url = ../../pool/glib-networking [submodule "glib2"] path = glib2 - url = ../../pool/glib2 + url = ../../ALP-pool/glib2 [submodule "glibc"] path = glibc url = ../../ALP-pool/glibc diff --git a/glib2 b/glib2 index d1f8aec..90313a7 160000 --- a/glib2 +++ b/glib2 @@ -1 +1 @@ -Subproject commit d1f8aeca547afa3dd031f3ef214784a285ff6ed6 +Subproject commit 90313a7f8bda746907b5fc2f468c8e118d6c429f diff --git a/patchinfo.20240821152649764580.269002615871826/_patchinfo b/patchinfo.20240821152649764580.269002615871826/_patchinfo new file mode 100644 index 0000000..cb1c6b2 --- /dev/null +++ b/patchinfo.20240821152649764580.269002615871826/_patchinfo @@ -0,0 +1,16 @@ + + + VUL-0: CVE-2024-34397: glib2: signal subscriptions are vulnerable to unicast spoofing + + mgorse + low + security + Security update for glib2 + This update for glib2 fixes the following issues: + +- Fixed a possible use after free regression introduced by CVE-2024-34397 patch (bsc#1224044). + + glib2 + glib2:doc + +