Format: 1.8 Date: Tue, 30 Apr 2024 15:02:13 -0300 Source: glibc Built-For-Profiles: noudeb Architecture: source Version: 2.39-0ubuntu8.2 Distribution: noble-security Urgency: medium Maintainer: Ubuntu Developers Changed-By: Paulo Flabiano Smorigo Changes: glibc (2.39-0ubuntu8.2) noble-security; urgency=medium . * SECURITY UPDATE: Stack-based buffer overflow - debian/patches/CVE-2024-33599.patch: CVE-2024-33599: nscd: Stack- based buffer overflow in netgroup cache. - CVE-2024-33599 * SECURITY UPDATE: Null pointer - debian/patches/CVE-2024-33600_1.patch: CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response. - debian/patches/CVE-2024-33600_2.patch: CVE-2024-33600: nscd: Do not send missing not-found response in addgetnetgrentX. - CVE-2024-33600 * SECURITY UPDATE: Memory corruption - debian/patches/CVE-2024-33601_33602.patch: CVE-2024-33601, CVE- 2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX. - CVE-2024-33601 - CVE-2024-33602 Checksums-Sha1: 48475b15090661f70db0d3d353ecce4b0b3e456c 9420 glibc_2.39-0ubuntu8.2.dsc 581db16391daa00246e361b2f3fa4b392710ec5e 462640 glibc_2.39-0ubuntu8.2.debian.tar.xz 605cb704cbc45eaa1011a07d0aaebdcb1ed58df0 11551 glibc_2.39-0ubuntu8.2_source.buildinfo Checksums-Sha256: 23bc3e1ea1d1b28130351b4c023debefbfcc5a763a6b0d51696770a31c72ee84 9420 glibc_2.39-0ubuntu8.2.dsc aa2da913d40f3f3cd85e2e026e2d02f48177032f87b85a07808f72d6ed17227a 462640 glibc_2.39-0ubuntu8.2.debian.tar.xz a29096d7d7a39bd9ce50ec2235633a3442221e747474030c1d8fb290f21bb5eb 11551 glibc_2.39-0ubuntu8.2_source.buildinfo Files: 8168c540f4f875f082f2ed5edb7ef502 9420 libs required glibc_2.39-0ubuntu8.2.dsc e3877af8715a25a6b7397f2223dfd173 462640 libs required glibc_2.39-0ubuntu8.2.debian.tar.xz 8252b41942db8ca92b12c5d5eda0e4a4 11551 libs required glibc_2.39-0ubuntu8.2_source.buildinfo Original-Maintainer: GNU Libc Maintainers Original-Vcs-Browser: https://salsa.debian.org/glibc-team/glibc Original-Vcs-Git: https://salsa.debian.org/glibc-team/glibc.git