[ptxdist] [PATCH] glib: Version bump. 2.86.3 -> 2.86.4

mailarchive of the ptxdist mailing list
 help / color / mirror / Atom feed

* [ptxdist] [PATCH] glib: Version bump. 2.86.3 -> 2.86.4
@ 2026-02-15 11:44 Christian Melki
  2026-03-02  9:25 ` [ptxdist] [APPLIED] " Michael Olbrich
  0 siblings, 1 reply; 2+ messages in thread
From: Christian Melki @ 2026-02-15 11:44 UTC (permalink / raw)
  To: ptxdist

Bugfix, security release.
https://gitlab.gnome.org/GNOME/glib/-/releases/2.86.4

Plugs CVEs:
CVE-2026-1484 - Buffer underflow on Glib through glib/gbase64.c via g_base64_encode_close()
CVE-2026-1485 - Buffer underflow on Glib through gio/gcontenttype-fdo.c via parse_header()
CVE-2026-1489 - Integer Overflow on Glib through glib/guniprop.c via output_marks()

Signed-off-by: Christian Melki <christian.melki@t2data.com>
---
 rules/glib.make | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/rules/glib.make b/rules/glib.make
index 340987a7e..1013c5e41 100644
--- a/rules/glib.make
+++ b/rules/glib.make
@@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_GLIB) += glib
 #
 # Paths and names
 #
-GLIB_VERSION	:= 2.86.3
-GLIB_MD5	:= 2383dcdbf3eeb35d9ab005532fb256ba
+GLIB_VERSION	:= 2.86.4
+GLIB_MD5	:= f2233a826c952aaae42b4a61611a06a4
 GLIB		:= glib-$(GLIB_VERSION)
 GLIB_SUFFIX	:= tar.xz
 GLIB_URL	:= $(call ptx/mirror, GNOME, glib/$(basename $(GLIB_VERSION))/$(GLIB).$(GLIB_SUFFIX))
-- 
2.43.0




^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: [ptxdist] [APPLIED] glib: Version bump. 2.86.3 -> 2.86.4
  2026-02-15 11:44 [ptxdist] [PATCH] glib: Version bump. 2.86.3 -> 2.86.4 Christian Melki
@ 2026-03-02  9:25 ` Michael Olbrich
  0 siblings, 0 replies; 2+ messages in thread
From: Michael Olbrich @ 2026-03-02  9:25 UTC (permalink / raw)
  To: ptxdist; +Cc: Christian Melki

Thanks, applied as bc1fcc8ba0bb4cf68072490690fc9c7784d6cb76.

Michael

[sent from post-receive hook]

On Mon, 02 Mar 2026 10:25:21 +0100, Christian Melki <christian.melki@t2data.com> wrote:
> Bugfix, security release.
> https://gitlab.gnome.org/GNOME/glib/-/releases/2.86.4
> 
> Plugs CVEs:
> CVE-2026-1484 - Buffer underflow on Glib through glib/gbase64.c via g_base64_encode_close()
> CVE-2026-1485 - Buffer underflow on Glib through gio/gcontenttype-fdo.c via parse_header()
> CVE-2026-1489 - Integer Overflow on Glib through glib/guniprop.c via output_marks()
> 
> Signed-off-by: Christian Melki <christian.melki@t2data.com>
> Message-Id: <20260215114439.3245026-1-christian.melki@t2data.com>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
> 
> diff --git a/rules/glib.make b/rules/glib.make
> index 340987a7ef20..1013c5e41392 100644
> --- a/rules/glib.make
> +++ b/rules/glib.make
> @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_GLIB) += glib
>  #
>  # Paths and names
>  #
> -GLIB_VERSION	:= 2.86.3
> -GLIB_MD5	:= 2383dcdbf3eeb35d9ab005532fb256ba
> +GLIB_VERSION	:= 2.86.4
> +GLIB_MD5	:= f2233a826c952aaae42b4a61611a06a4
>  GLIB		:= glib-$(GLIB_VERSION)
>  GLIB_SUFFIX	:= tar.xz
>  GLIB_URL	:= $(call ptx/mirror, GNOME, glib/$(basename $(GLIB_VERSION))/$(GLIB).$(GLIB_SUFFIX))



^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2026-03-02  9:25 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2026-02-15 11:44 [ptxdist] [PATCH] glib: Version bump. 2.86.3 -> 2.86.4 Christian Melki
2026-03-02  9:25 ` [ptxdist] [APPLIED] " Michael Olbrich

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox