-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 16 Feb 2026 09:11:04 +0100
Source: glib2.0
Binary: libglib2.0-data libglib2.0-doc
Architecture: all
Version: 2.84.4-3~deb13u3
Distribution: trixie
Urgency: medium
Maintainer: all Build Daemon (x86-csail-02) <buildd_all-x86-csail-02@buildd.debian.org>
Changed-By: Andreas Henriksson <andreas@fatal.se>
Description:
 libglib2.0-data - Common files for GLib library
 libglib2.0-doc - Documentation files for the GLib library
Closes: 1119919 1125752 1126549 1126550 1126551
Changes:
 glib2.0 (2.84.4-3~deb13u3) trixie; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team.
   * Add patch to fix timezone handling with Debian & Ubuntu's symlinks
     (Closes: #1119919) (LP: #2130378)
   * CVE-2026-0988: Missing input validation in g_buffered_input_stream_peek
     (Closes: #1125752)
   * CVE-2026-1484: Integer overflow in base64 encoding can cause memory
     corruption. (Closes: #1126551)
   * CVE-2026-1485: Buffer underflow vulnerability in content type parsing
     caused by (signed) integer wrap for large inputs. (Closes: #1126550)
   * CVE-2026-1489: Integer overflow in unicode conversion
     can lead to memory corruption. (Closes: #1126549)
Checksums-Sha1:
 13a714147a78dc9beda7b05d460e2150f66fca4c 8832 glib2.0_2.84.4-3~deb13u3_all-buildd.buildinfo
 1c58ed52114b9614ffa900137667c7e9c70c24cb 1286720 libglib2.0-data_2.84.4-3~deb13u3_all.deb
 381d8775d35477a365f386f0b8672e7069dfc7f0 2658172 libglib2.0-doc_2.84.4-3~deb13u3_all.deb
Checksums-Sha256:
 5afb9914191d053be62a80c38a333b10486f6be96cf87d82f869c9ce968e7c0c 8832 glib2.0_2.84.4-3~deb13u3_all-buildd.buildinfo
 bb9c50614316ccb8533d65f2f995e25d1275e0d83dcd2b675c2b6da8d620e55b 1286720 libglib2.0-data_2.84.4-3~deb13u3_all.deb
 0d3ab45eef2b41529072cf538f72b080d4a762dfda3c6587de6da8496cd28061 2658172 libglib2.0-doc_2.84.4-3~deb13u3_all.deb
Files:
 5a45a459a30703aefb6f16e62f37407d 8832 libs optional glib2.0_2.84.4-3~deb13u3_all-buildd.buildinfo
 26f719a6a081077b9f363ab45ca88adc 1286720 libs optional libglib2.0-data_2.84.4-3~deb13u3_all.deb
 7215157758d4dbf74b9cf15fda7ab223 2658172 doc optional libglib2.0-doc_2.84.4-3~deb13u3_all.deb

-----BEGIN PGP SIGNATURE-----
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=up4O
-----END PGP SIGNATURE-----