-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 11 Dec 2024 10:52:05 +0800
Source: libsoup2.4
Binary: libsoup2.4-common libsoup2.4-doc
Architecture: all
Version: 2.74.3-1+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: all Build Daemon (x86-csail-02) <buildd_all-x86-csail-02@buildd.debian.org>
Changed-By: Sean Whitton <spwhitton@spwhitton.name>
Description:
 libsoup2.4-common - HTTP library implementation in C -- Common files
 libsoup2.4-doc - HTTP library implementation in C -- API Reference
Closes: 1088812 1089238 1089240
Changes:
 libsoup2.4 (2.74.3-1+deb12u1) bookworm; urgency=high
 .
   * Backport upstream fixes for
     - CVE-2024-52530: HTTP request smuggling with null bytes at the end of
       header names (Closes: #1088812)
     - CVE-2024-52531: buffer overflow in soup_header_parse_param_list_strict
       (Closes: #1089240)
     - CVE-2024-52532: infinite loop / potential DoS in reading certain
       data from WebSocket clients (Closes: #1089238).
Checksums-Sha1:
 61117220f7d350e2b0b4c829b6439dc59ca9b4ae 56240 libsoup2.4-common_2.74.3-1+deb12u1_all.deb
 b9251f3ed9868094bf630c491c0434a44d0cacfa 185852 libsoup2.4-doc_2.74.3-1+deb12u1_all.deb
 039900684558b5f6d0c90e750dcac1ec045e4cc1 11244 libsoup2.4_2.74.3-1+deb12u1_all-buildd.buildinfo
Checksums-Sha256:
 5bcfb97f0ad0dcc2ec64c22cafd71acec5c557fb8b7d1e00fdcc2db6d8742585 56240 libsoup2.4-common_2.74.3-1+deb12u1_all.deb
 567dd30dbaa8862490ede12bf607babeeaeaa5f9315701719f35b7775d7aa230 185852 libsoup2.4-doc_2.74.3-1+deb12u1_all.deb
 a93ab98afe88bce602f68361890b66c8f02b5fc4d823bdfa76cb75d8bd6a37d3 11244 libsoup2.4_2.74.3-1+deb12u1_all-buildd.buildinfo
Files:
 88c70cb2fe194955276d1e5bda696d82 56240 devel optional libsoup2.4-common_2.74.3-1+deb12u1_all.deb
 e1b30b1ab0eff59f3f5dab1be6d353f4 185852 doc optional libsoup2.4-doc_2.74.3-1+deb12u1_all.deb
 1bac0b3798cde8ed143eea1f965e2496 11244 devel optional libsoup2.4_2.74.3-1+deb12u1_all-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEzcbx6nIE/ydHa1FFigL77i1GSVkFAmdm/jQACgkQigL77i1G
SVl7tQ//WoGIRsq8SKUKGAaMwngtN0/BC8BXtPvkkCxI+Jrfx3V2tUd4fdwMgMUW
H92+tyP5nUvVeE50ZckQxysDi1YCs/uv2EALFxOa7oH0fdBn8s7pIDvoAOdZhdR/
9DYRNoH3r4TcOzl3HgZ3g6FU4LylCviTl5RNDhFQlIsOwmXYf/lwo/5xM9+FaUEA
pBgSrttmI3ND0rRy7AFWXnRIeF03dS9Ibe1A/aSSpqS+yMmzYG55FUFRi8NqoT/P
2bP1TbMl3VFswROXzsH+iwg1JB//UPxnYw/h5jcONLRodYfFBpBH4XC1UMUPMOvx
qR9N3Kda0Cv7Y4oNQNJUh2jL1wSpbKf/y1i3RsL549pBzUFg3CCY4ljnTKnkcq+M
h52ryJ4oMUajIHgNSpCCIaOm3+8XC42LtPM0Hg495TWQzUhurgr/A6hTmnL3kN3z
n9nTRejXPATixQB3dNBTfsnpTaDvrQmWmA//0I4DBxXk4ZYeb5oNsz7KcvmUMXfK
rkqk4TRbtAyPS6w9s1lET6zZ1W+jZvP1nLRDwfhpEKP9mPmtaaaCyqAXm1bs972M
GW1Eq+K5GSphx2MUuezTiSOj7v87fFeUfUlrTRtr4CzSllWVKhz2gGIdyz548rus
haXICMUvEGDl9Bk+rGUyjQhB75h2ef5ENjoeX4bDAA07Hdf7MDA=
=j1vi
-----END PGP SIGNATURE-----