-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 17 Oct 2025 20:26:34 -0300 Source: libsmb2 Binary: libsmb2-6 libsmb2-6-dbgsym libsmb2-dev Architecture: arm64 Version: 6.2+dfsg-2+deb13u1 Distribution: trixie Urgency: medium Maintainer: arm Build Daemon (arm-ubc-01) Changed-By: Matheus Polkorny Description: libsmb2-6 - Libsmb2 is a SMB2/3 client library (library) libsmb2-dev - Libsmb2 is a SMB2/3 client library (development) Changes: libsmb2 (6.2+dfsg-2+deb13u1) trixie; urgency=medium . * Import upstream patches to fix CVE-2025-57632 - When processing SMB2 chained PDUs (NextCommand), libsmb2 repeatedly calls smb2_add_iovector() to append to a fixed-size iovec array without checking the upper bound of v->niov (SMB2_MAX_VECTORS=256) * d/p/CVE-2025-57632-pt*.patch: Import upstream patches to fix CVE * d/p/CVE-2025-57632-pt2.patch: Backport patch and Update hunks' offsets * d/p/CVE-2025-57632-pt3.patch: Backport patch and Update hunks' offsets * d/p/CVE-2025-57632-pt4.patch: Backport patch and Change hunk to reflect new code indentation Checksums-Sha1: 745dfc3a63bd72c8f55af64900f59ee342bdd741 284500 libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_arm64.deb 3d8566ec66990288a5ff2fdb9eb8bc59cc51eaa8 94076 libsmb2-6_6.2+dfsg-2+deb13u1_arm64.deb 883e54c3014398562b04efffd5d3b70a35479ea5 131760 libsmb2-dev_6.2+dfsg-2+deb13u1_arm64.deb c96315ad3567bd3699959536ffaab6fe0d76c3ff 7293 libsmb2_6.2+dfsg-2+deb13u1_arm64-buildd.buildinfo Checksums-Sha256: 344da36c1a8b49136393852f160569d66c3b08a6a160f300716a63be6f7a1950 284500 libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_arm64.deb 1cdfcf1a5db6f942389a6f68c23e2f75f16c8d8c7b4918fd882bffde5efbdae2 94076 libsmb2-6_6.2+dfsg-2+deb13u1_arm64.deb 74ccec31d5189cab912a6a4bf11233a7b8ad9b690a2a741cc0f268e86fe3ab0c 131760 libsmb2-dev_6.2+dfsg-2+deb13u1_arm64.deb 1c24436aedba6e7bad41b493f809f59234073407adca8b6a440f02b4a64df114 7293 libsmb2_6.2+dfsg-2+deb13u1_arm64-buildd.buildinfo Files: adc6a191273eddf8f1f837f5c1ef7b3b 284500 debug optional libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_arm64.deb 271abc4329416d4ca071da52b0d6f3bb 94076 libs optional libsmb2-6_6.2+dfsg-2+deb13u1_arm64.deb ec641908e87b3672d34483ae72ee846b 131760 libdevel optional libsmb2-dev_6.2+dfsg-2+deb13u1_arm64.deb d633dcb560765f9f04e6134f1c099785 7293 libs optional libsmb2_6.2+dfsg-2+deb13u1_arm64-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEq41qkgEcGaML+/CnCr/D/stJkDwFAmkHsfwACgkQCr/D/stJ kDwZYA//SuPmg7wy11ZgRNU58CS7GRIOUnpUc+QirVPFP1fGrubfGDTL9bYGKBYc JSNBKiKtxiB4l/C0A2UU76kYWAO6adbtVyCyKiWmdt2JETyH2ulRG5c5VbS3iQJe s+L9Tsw2GTFbRT5h2SwolhbZjmCCPK9v4d0O0XvZDsmwhp6ZiSNc2gEwyhoTazG3 L+Kb1gHsuKISe6Ui9NGvnT0MInGXISub/oGm0Dr4YXnZhmgf3I6suZ7oVUfvOlDu 1TLzNGJPlUDea0a6xxCwTQ75ZsSf8gSL1gyciA3Fv9+e3PEpeeTGN516V3vMFFfe LcXVSrea9/oXjnOl3xxi6wo1ZlPee8r4qkiZU/+FKQvdKMW4g6wvgEAa1NMgsYwu UrhFVMuYGCFEB8IEz1wgddCcG6onYhVxbK+3CaUn+vScFZSxicINdvaIwIgKdNeL tegLwLisSMNY80Jx+VGUsZe1cVtfEoj+O7CM4GjwP4zLsh4fxbMfNFsJ4QGs5S3u uGA7/crUOj6He0JIesgbZf0Wn1WYo1b+heo3t1/JM2LhVHuSTDnKfy4qTY7c3kc3 EegWOFaj05YTCMRua2DwzkBp3/J+MJtk4oz2oOKVis21guIfhH5fOjl1NotaxAkF sgsg+W5G1AeB9pY6QgwE5hamtpVcyFUmbkpR0CZHod2IgNeAGnA= =MxVQ -----END PGP SIGNATURE-----