Finding fresh policy Processing upload klibc_2.0.13-ok2_source.changes Beginning processing. Verifying signature on klibc_2.0.13-ok2_source.changes Verifying signature on klibc_2.0.13-ok2.dsc Performing DSC verification. klibc_2.0.13-ok2_source.buildinfo can be unsigned. Verifying the changes file. Verifying files in upload. Verifying source file klibc_2.0.13-ok2.dsc klibc_2.0.13.orig.tar.xz found in Primary Archive for openKylin Verifying uploaded source package by unpacking it. Copying copyright contents. Found changelog Cleaning up source tree. Done Verifying source file klibc_2.0.13.orig.tar.xz Verifying source file klibc_2.0.13-ok2.debian.tar.xz Verifying buildinfo file klibc_2.0.13-ok2_source.buildinfo Finding and applying overrides. Checking for klibc/2.0.13-ok2 source ancestry Finished checking upload. Creating queue entry klibc diff from 2.0.13-ok1 to 2.0.13-ok2 requested Setting it to UNAPPROVED Building recipients list. Adding recipient: 'Cibot ' Sent a mail: Subject: [openkylin/nile-proposed] klibc 2.0.13-ok2 (Waiting for approval) Sender: OKBS notice Recipients: Cibot Bcc: Local Root Body: klibc (2.0.13-ok2) nile; urgency=medium * SECURITY UPDATE: improper pointer arithmetic - debian/patches/CVE-2016-9840.patch: remove offset pointer optimization in usr/klibc/zlib/inftrees.c. - CVE-2016-9840 * SECURITY UPDATE: improper pointer arithmetic - debian/patches/CVE-2016-9841.patch: remove offset pointer optimization in usr/klibc/zlib/inffast.c. - CVE-2016-9841 * SECURITY UPDATE: memory corruption during compression - debian/patches/CVE-2018-25032.patch: addresses a bug that can crash deflate on rare inputs when using Z_FIXED. - CVE-2018-25032 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2022-37434-1.patch: adds an extra condition to check if state->head->extra_max is greater than len before copying, and moves the len assignment to be placed before the check in usr/klibc/zlib/inflate.c. - debian/patches/CVE- 2022-37434-2.patch: in the previous patch, the placement of the len assignment was causing issues so it was moved within the conditional check. - CVE-2022-37434 Date: Mon, 04 Nov 2024 16:47:44 +0800 Changed-By: liubo01 Maintainer: openKylin Developers Signed-By: Cibot https://build.openkylin.top/openkylin/+source/klibc/2.0.13-ok2 == OK: klibc_2.0.13.orig.tar.xz OK: klibc_2.0.13-ok2.debian.tar.xz OK: klibc_2.0.13-ok2.dsc -> Component: main Section: libs This upload awaits approval by a distro manager No announcement sent Thank you for your contribution to openKylin. -- You are receiving this email because you made this upload. Committing the transaction and any mails associated with this upload.