-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 17 Oct 2025 20:26:34 -0300 Source: libsmb2 Binary: libsmb2-6 libsmb2-6-dbgsym libsmb2-dev Architecture: riscv64 Version: 6.2+dfsg-2+deb13u1 Distribution: trixie Urgency: medium Maintainer: riscv64 Build Daemon (rv-osuosl-05) Changed-By: Matheus Polkorny Description: libsmb2-6 - Libsmb2 is a SMB2/3 client library (library) libsmb2-dev - Libsmb2 is a SMB2/3 client library (development) Changes: libsmb2 (6.2+dfsg-2+deb13u1) trixie; urgency=medium . * Import upstream patches to fix CVE-2025-57632 - When processing SMB2 chained PDUs (NextCommand), libsmb2 repeatedly calls smb2_add_iovector() to append to a fixed-size iovec array without checking the upper bound of v->niov (SMB2_MAX_VECTORS=256) * d/p/CVE-2025-57632-pt*.patch: Import upstream patches to fix CVE * d/p/CVE-2025-57632-pt2.patch: Backport patch and Update hunks' offsets * d/p/CVE-2025-57632-pt3.patch: Backport patch and Update hunks' offsets * d/p/CVE-2025-57632-pt4.patch: Backport patch and Change hunk to reflect new code indentation Checksums-Sha1: 80c1cb02bc8acb2b4767f1ad531917e011278234 276980 libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_riscv64.deb 2dc478fbcc0609ac5f32ded9561d9a3207f692a6 102848 libsmb2-6_6.2+dfsg-2+deb13u1_riscv64.deb e1acf323937adee10a012ae590d7eb6641e74bc0 284792 libsmb2-dev_6.2+dfsg-2+deb13u1_riscv64.deb 38531e6eddcaf87de25e97c220737ba033add9a0 7259 libsmb2_6.2+dfsg-2+deb13u1_riscv64-buildd.buildinfo Checksums-Sha256: 04bb86b808be16e5e9aaeec493b993b29b197624e7acfc7fa68dcc480e5ed896 276980 libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_riscv64.deb eec763b4053584934a2f67a44f893264082e1022a0209ae1d650c5fffef91c93 102848 libsmb2-6_6.2+dfsg-2+deb13u1_riscv64.deb e8d6f972014cb13591d4950ad2e2cbc2c26a1414391d408eb95c671211a88e9c 284792 libsmb2-dev_6.2+dfsg-2+deb13u1_riscv64.deb 1b235d2bababdec63fe224b3b8009c5d2d206328ce9cf40d67d2773403ef7cb0 7259 libsmb2_6.2+dfsg-2+deb13u1_riscv64-buildd.buildinfo Files: d3bb0a7aeb53e395570f2b3c00805b4b 276980 debug optional libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_riscv64.deb 5691e2593c1abe103b5d51b467ad58dd 102848 libs optional libsmb2-6_6.2+dfsg-2+deb13u1_riscv64.deb 2f41a2f695b3692b7b958179e32f1833 284792 libdevel optional libsmb2-dev_6.2+dfsg-2+deb13u1_riscv64.deb 00c410f02f79f200870fcda986563922 7259 libs optional libsmb2_6.2+dfsg-2+deb13u1_riscv64-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEMcO3OjbCeLV2aTi6M4DiYOIPW9cFAmkHs50ACgkQM4DiYOIP W9c7ww//azL6FBLiWEFTSJtWOykHwp243JNcHwcHolC+UmeRA7gZmXAyjXygsi6M pdkNRkJcgHnBnDKfXPDfJAs0OKVAC792QlJGgKVX1vdYvWH4C38rk+SwK7J8X7zP EHB6dofGzRPu5aIvmzMWZks7Mrg6NRdnOYAbLQlzX/J97WvA04P6xKvTYZ/HcRAg Q92LUwJZMfLez5xWWdHOap6qYlZuVbQ6bohtuA8EBz2LYRH6zT+NXNaVgSpGD7MP LS0aNwrpejL4h7mugXSIwUmKQenIWnt6ybKMhhTtyTaDCZrcuJfJr0ESyGksI90H K9KWRFZtCxRrCFjhxaQGPX5Tc4qno4QpVS7eSsPU2GTDgpJo23Sn53Hrd8urCq0i 6TydJUMMuInb2X+Tc5JDfkcGcMyzoz5EVASKX5j4BcxLMY1NnZVTPWQCF0Q52oU7 KkcBKqbXax7v8uzawwCQSlZDjj+nZ+egClfZoETdJpCYLj9Q1bN+Fx1F7XuMvnB+ TpaQ+iDyRvWKcZQBVTo0UiZcAtay1veUOmFo90hF8j+R7WVXqQHsYeG6NhaHWzCB OXDsEOZWoaFPLXfIZKNI8uONf60V5SDrNVjKSDBnUGno/3TgmaIK/9P893IZCaBE jKDMuH2GkA7SpUIUc9gftn3sO7GXw0xWB3FpdNbIfiwsN1tV4u4= =WeRa -----END PGP SIGNATURE-----