From: Raspbian automatic forward porter <root@raspbian.org>
Date: Wed, 20 May 2026 07:03:08 +0000 (+0100)
Subject: Merge version 2.41-12+rpi1+deb13u2 and 2.41-12+deb13u3 to produce 2.41-12+rpi1+deb13u3
X-Git-Tag: archive/raspbian/2.41-12+rpi1+deb13u3^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=12d84f42bbe2a4bd8fa0273def45d74b1b1abaf6;p=glibc.git

Merge version 2.41-12+rpi1+deb13u2 and 2.41-12+deb13u3 to produce 2.41-12+rpi1+deb13u3
---

12d84f42bbe2a4bd8fa0273def45d74b1b1abaf6
diff --cc debian/changelog
index 52a447d05,c5f3bdc69..6bd0ab8ec
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,12 -1,32 +1,42 @@@
- glibc (2.41-12+rpi1+deb13u2) trixie-staging; urgency=medium
++glibc (2.41-12+rpi1+deb13u3) trixie-staging; urgency=medium
 +
 +  [changes brought forward from 2.25-2+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Wed, 29 Nov 2017 03:00:21 +0000]
 +  * Disable testsuite.
 +
 +  [changes brought forward from 2.37-12+rpi2 by Peter Michael Green <plugwash@raspbian.org> at Tue, 17 Oct 2023 12:00:24 +0000]
 +  * Remove valgrind conflicts.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Tue, 17 Mar 2026 21:07:24 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Wed, 20 May 2026 07:03:08 +0000
++
+ glibc (2.41-12+deb13u3) trixie; urgency=medium
+ 
+   * debian/control.in/libc: ensure that libdpkg-perl is fixed wrt symbol
+     versions used as ABI flag.
+   * Stop reverting the following patches now that dpkg-shlibdeps in trixie
+     supports symbol versions used as ABI flag (see #1122107):
+     - local-revert-x86-64-add-GLIBC_ABI_DT_X86_64_PLT-version.diff
+     - local-revert-x86-64-add-GLIBC_ABI_GNU2_TLS-version.diff
+     - local-revert-i386-add-GLIBC_ABI_GNU2_TLS-version.diff
+     - local-revert-i386-add-GLIBC_ABI_GNU_TLS-version.diff
+   * debian/symbols.wildcards: define the GLIBC_ABI_DT_X86_64_PLT,
+     GLIBC_ABI_GNU_TLS and GLIBC_ABI_GNU2_TLS symbol versions.
+   * debian/patches/git-updates.diff: update from upstream stable branch:
+     - Fix a null pointer dereference in the nss_database_check_reload_and_get
+       function.
+     - Fix tst-preadvwritev2 and tst-preadvwritev64v2 with recent kernels.
+     - Fix invalid pointer arithmetic in ANSI_X3.110 iconv module
+     - Fix a typo preventing new tst-wordexp-reuse-mem to run
+     - Fix incorrect handling of DNS responses in gethostbyaddr and
+       gethostbyaddr_r (CVE-2026-4437).  Closes: #1131435.
+     - Fix invalid DNS hostnames returned by gethostbyaddr and
+       gethostbyaddr_r (CVE-2026-4438).  Closes: #1131887.
+     - Fix random failure of tst-link-map-contiguous-ldso.
+     - Fix tst-rseq with Linux 7.0.
+     - Fix a possible crash due to an assertion failure when converting
+       inputs from the IBM139x character sets (CVE-2026-4046).  Closes:
+       #1132499.
+ 
+  -- Aurelien Jarno <aurel32@debian.org>  Mon, 27 Apr 2026 22:09:22 +0200
  
  glibc (2.41-12+deb13u2) trixie; urgency=medium