From: Raspbian automatic forward porter <root@raspbian.org>
Date: Sun, 30 Jun 2024 09:58:32 +0000 (+0100)
Subject: Merge version 2.28-10+rpi1+deb10u3 and 2.28-10+deb10u4 to produce 2.28-10+rpi1+deb10u4
X-Git-Tag: archive/raspbian/2.28-10+rpi1+deb10u4^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=2d1d99de019b2a052e64a0e9c34f5605a31c53f0;p=glibc.git

Merge version 2.28-10+rpi1+deb10u3 and 2.28-10+deb10u4 to produce 2.28-10+rpi1+deb10u4
---

2d1d99de019b2a052e64a0e9c34f5605a31c53f0
diff --cc debian/changelog
index 056a384d8,1d8940d1f..a0658a603
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,12 +1,19 @@@
- glibc (2.28-10+rpi1+deb10u3) buster-staging; urgency=medium
++glibc (2.28-10+rpi1+deb10u4) buster-staging; urgency=medium
 +
 +  [changes brought forward from 2.25-2+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Wed, 29 Nov 2017 03:00:21 +0000]
 +  * Disable testsuite.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Sat, 25 May 2024 18:05:05 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Sun, 30 Jun 2024 09:58:31 +0000
++
+ glibc (2.28-10+deb10u4) buster-security; urgency=medium
+ 
+   * Non-maintainer upload by the LTS Team.
+   * CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache
+   * CVE-2024-33600: nscd: Null pointer crashes after notfound response
+   * CVE-2024-33601: nscd: Daemon may terminate on memory allocation failure
+   * CVE-2024-33602: nscd: Possible memory corruption
+ 
+  -- Adrian Bunk <bunk@debian.org>  Sat, 29 Jun 2024 13:27:34 +0300
  
  glibc (2.28-10+deb10u3) buster-security; urgency=medium