From: Raspbian automatic forward porter <root@raspbian.org>
Date: Thu, 19 Oct 2023 22:14:41 +0000 (+0100)
Subject: Merge version 16.2.11+ds-3+rpi1 and 16.2.11+ds-5 to produce 16.2.11+ds-5+rpi1
X-Git-Tag: archive/raspbian/16.2.11+ds-5+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=25e8aeff04c1516567ca5b2f930ac9778ec21702;p=ceph.git

Merge version 16.2.11+ds-3+rpi1 and 16.2.11+ds-5 to produce 16.2.11+ds-5+rpi1
---

25e8aeff04c1516567ca5b2f930ac9778ec21702
diff --cc debian/changelog
index 94bf40264,1edd31f42..85f5dfaff
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,15 -1,18 +1,31 @@@
- ceph (16.2.11+ds-3+rpi1) trixie-staging; urgency=medium
++ceph (16.2.11+ds-5+rpi1) trixie-staging; urgency=medium
 +
 +  [changes brought forward from 10.2.5-7.2+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Sun, 30 Jul 2017 09:48:17 +0000]
 +  * Add Raspbian to lists of "debian-like" distros.
 +    + Hopefully this will fix site-packages vs dist-packages
 +      build failure in Raspbian.
 + 
 +  [changes introduced in 14.2.5-3+rpi1 by Peter Michael Green]
 +  * Remove problematic gitattributes files.
 +  * Disable neon on armhf too.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Sat, 30 Sep 2023 07:16:59 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Thu, 19 Oct 2023 22:14:40 +0000
++
+ ceph (16.2.11+ds-5) unstable; urgency=high
+ 
+   * CVE-2023-43040: security issue with RGW with improperly verified POST keys.
+     Applied upstream fix: rgw: Fix bucket validation against POST policies
+     (Closes: #1053690).
+ 
+  -- Thomas Goirand <zigo@debian.org>  Mon, 09 Oct 2023 08:53:31 +0200
+ 
+ ceph (16.2.11+ds-4) unstable; urgency=medium
+ 
+   * [5e0eaf6] Add -latomic for riscv.
+   * [44ebe5f] Modify fix-CheckCxxAtomic-riscv64.patch so that it works as
+     expected.
+ 
+  -- Thomas Goirand <zigo@debian.org>  Fri, 29 Sep 2023 10:36:19 +0200
  
  ceph (16.2.11+ds-3) unstable; urgency=medium
  
diff --cc debian/patches/series
index 803900939,f83c95483..14fdbc693
--- a/debian/patches/series
+++ b/debian/patches/series
@@@ -25,5 -25,4 +25,6 @@@ CVE-2022-3650_2_ceph-crash_fix_stderr_h
  CVE-2022-3854_1_rgw_Guard_against_malformed_bucket_URLs.patch
  include-cstdint-in-subsys_types.h.patch
  fix-gcc-13-issue.patch
+ CVE-2023-43040_rgw_Fix_bucket_validation_against_POST_policies.patch
 +detect-raspbian.diff
 +remove-problematic-gitattributes-files.patch