-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 17 Oct 2025 20:26:34 -0300 Source: libsmb2 Binary: libsmb2-6 libsmb2-6-dbgsym libsmb2-dev Architecture: armhf Version: 6.2+dfsg-2+deb13u1 Distribution: trixie Urgency: medium Maintainer: arm Build Daemon (arm-conova-03) Changed-By: Matheus Polkorny Description: libsmb2-6 - Libsmb2 is a SMB2/3 client library (library) libsmb2-dev - Libsmb2 is a SMB2/3 client library (development) Changes: libsmb2 (6.2+dfsg-2+deb13u1) trixie; urgency=medium . * Import upstream patches to fix CVE-2025-57632 - When processing SMB2 chained PDUs (NextCommand), libsmb2 repeatedly calls smb2_add_iovector() to append to a fixed-size iovec array without checking the upper bound of v->niov (SMB2_MAX_VECTORS=256) * d/p/CVE-2025-57632-pt*.patch: Import upstream patches to fix CVE * d/p/CVE-2025-57632-pt2.patch: Backport patch and Update hunks' offsets * d/p/CVE-2025-57632-pt3.patch: Backport patch and Update hunks' offsets * d/p/CVE-2025-57632-pt4.patch: Backport patch and Change hunk to reflect new code indentation Checksums-Sha1: 09862c15a6ea9ba317232992645c28509c7845aa 281088 libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_armhf.deb 90a3767f217505f072e72d52bb334262149e1091 84244 libsmb2-6_6.2+dfsg-2+deb13u1_armhf.deb cb96178ac9f5c2b8ad4891e3db1bf28e816c3959 121536 libsmb2-dev_6.2+dfsg-2+deb13u1_armhf.deb d7362a4320a1502e108ddf25629264357250611f 7172 libsmb2_6.2+dfsg-2+deb13u1_armhf-buildd.buildinfo Checksums-Sha256: 17eff9e99c9038326c73ff6594f7e238282d2308e3c6424dc46cc36a9eeabd00 281088 libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_armhf.deb a5fa2d167d445c6c86e22fc8b27a0cd163d0058da477fb71c609ea99c941fb5c 84244 libsmb2-6_6.2+dfsg-2+deb13u1_armhf.deb d525235be283b1180ae41f0d82ab9884790117110940fe9126d49cc0c1d6e4d3 121536 libsmb2-dev_6.2+dfsg-2+deb13u1_armhf.deb b68e06d44e77caa29406f2982ba20971403cb58e2993f6fbfe6489c50f83c96b 7172 libsmb2_6.2+dfsg-2+deb13u1_armhf-buildd.buildinfo Files: c4ca68e29241d101f9e60d5fe9eca09f 281088 debug optional libsmb2-6-dbgsym_6.2+dfsg-2+deb13u1_armhf.deb 46b1ef13c64cdaafc35b315293dcdde5 84244 libs optional libsmb2-6_6.2+dfsg-2+deb13u1_armhf.deb 24a4082323b9090e6fb9b21621382cfb 121536 libdevel optional libsmb2-dev_6.2+dfsg-2+deb13u1_armhf.deb 4809ebe0f7773119b4e11b2dbfadc226 7172 libs optional libsmb2_6.2+dfsg-2+deb13u1_armhf-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEVM4SKBZumztS8zr3lST9Us03ywsFAmkHsdcACgkQlST9Us03 ywuXoA//e0LstZJW31Qc0U0WxyRqqfgex+W/oqg8LIxXbEfg4v6xlKe8Y6CeF+TW z+XbXckPxJmPUOnZbklfEDsTb8PaHurBvmVOwcVAWI22lahY/hEdpT/dyKrlXl20 L9jfKI3QZ7eKCzcpPe0uypmXfavK6lptIz3a2vFZ1VpSTw+46Ud167FMg8aFxDWu ouXAvU0HsxiYpTNR6CwgHyqXrC4UXnrbwi4qfqPiuKkQABQmIpz96Kfbyn9weWTn MnwTD07ZqTpYcSyn8J6FQBZdrJrdoVxQ6OkAz0qqEdKBeE/1xt+2AuRn16nhy0OA ax8r5I/jSxGZmknoACm0DSt1dab/NZBrVkATjjRcFkAtK1uqsL1P5y2IF7V4ADvr gx8AOeMi1XgqFSBJpeiUYu3w2pPPlKDUOeXHXv1tm8fsX5j2IoD+mKkbyRDM5nUA SERF6ixiv3yrI/q1EMcWrzvPSAN0dqjVy2FUJxxalY2/CFiGneRdS3PBqmYoQUPn 4OsJw3tAqydbLk7pXphHlnCrzjS2uZaZaV62ftZUS6IAdRMVjTEOauZPNSBo4/dm d5TMpFVLJCOZpbO2UNI73xG+6wMkXXXVCNzTlkotZC7BFzPxy/vx50Qb0xwOxQL5 YFOaBFF5YcBs4K+h5KdxYK0BmtJ/DDBEUFqX3Q2xXeyurenUUXk= =ReT3 -----END PGP SIGNATURE-----