From: Raspbian automatic forward porter <root@raspbian.org>
Date: Fri, 5 Jun 2026 03:00:24 +0000 (+0100)
Subject: Merge version 16.2.15+ds-0+deb12u1+rpi1 and 16.2.15+ds-0+deb12u2 to produce 16.2... 
X-Git-Tag: archive/raspbian/16.2.15+ds-0+deb12u2+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=c1a869102f0d26f016e2e78b3d6911b1fede5c13;p=ceph.git

Merge version 16.2.15+ds-0+deb12u1+rpi1 and 16.2.15+ds-0+deb12u2 to produce 16.2.15+ds-0+deb12u2+rpi1
---

c1a869102f0d26f016e2e78b3d6911b1fede5c13
diff --cc debian/changelog
index 80412a2ca,bd3485ced..3f21b9141
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,15 -1,15 +1,28 @@@
- ceph (16.2.15+ds-0+deb12u1+rpi1) bookworm-staging; urgency=medium
++ceph (16.2.15+ds-0+deb12u2+rpi1) bookworm-staging; urgency=medium
 +
 +  [changes brought forward from 10.2.5-7.2+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Sun, 30 Jul 2017 09:48:17 +0000]
 +  * Add Raspbian to lists of "debian-like" distros.
 +    + Hopefully this will fix site-packages vs dist-packages
 +      build failure in Raspbian.
 + 
 +  [changes introduced in 14.2.5-3+rpi1 by Peter Michael Green]
 +  * Remove problematic gitattributes files.
 +  * Disable neon on armhf too.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Mon, 09 Dec 2024 22:34:51 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Fri, 05 Jun 2026 03:00:23 +0000
++
+ ceph (16.2.15+ds-0+deb12u2) bookworm-security; urgency=high
+ 
+   * Non-maintainer upload by the Security Team.
+   * mgr/alerts: enforce ssl context to SMTP_SSL (CVE-2024-31884)
+     (Closes: #1126573)
+   * Check if `HTTP_X_AMZ_COPY_SOURCE` header is empty (CVE-2024-47866)
+     (Closes: #1120797)
+   * client: disallow unprivileged users to escalate root privileges
+     (CVE-2025-52555) (Closes: #1108410)
+   * client: prohibit unprivileged users from setting sgid/suid bits
+ 
+  -- Salvatore Bonaccorso <carnil@debian.org>  Sat, 16 May 2026 14:52:24 +0200
  
  ceph (16.2.15+ds-0+deb12u1) bookworm-security; urgency=medium
  
diff --cc debian/patches/series
index 416fa61b0,4ae07fe52..be9f6b47b
--- a/debian/patches/series
+++ b/debian/patches/series
@@@ -18,5 -21,7 +18,9 @@@ Fix-build-with-fmt-8-9.patc
  fix-CheckCxxAtomic-riscv64.patch
  CVE-2022-3854_1_rgw_Guard_against_malformed_bucket_URLs.patch
  CVE-2024-48916.patch
+ mgr-alerts-enforce-ssl-context-to-SMTP_SSL.patch
+ Check-if-HTTP_X_AMZ_COPY_SOURCE-header-is-empty.patch
+ client-disallow-unprivileged-users-to-escalate-root-.patch
+ client-prohibit-unprivileged-users-from-setting-sgid.patch
 +detect-raspbian.diff
 +remove-problematic-gitattributes-files.patch