-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 27 Apr 2026 22:14:33 +0200
Source: glibc
Binary: libc-bin libc-bin-dbgsym libc-dev-bin libc-dev-bin-dbgsym libc-devtools libc-devtools-dbgsym libc6 libc6-dbg libc6-dev libc6-dev-dbgsym libc6-dev-i386 libc6-dev-x32 libc6-i386 libc6-i386-dbgsym libc6-udeb libc6-x32 libc6-x32-dbgsym locales-all nscd nscd-dbgsym
Architecture: amd64
Version: 2.36-9+deb12u14
Distribution: bookworm
Urgency: medium
Maintainer: all / amd64 / i386 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Aurelien Jarno <aurel32@debian.org>
Description:
 libc-bin   - GNU C Library: Binaries
 libc-dev-bin - GNU C Library: Development binaries
 libc-devtools - GNU C Library: Development tools
 libc6      - GNU C Library: Shared libraries
 libc6-dbg  - GNU C Library: detached debugging symbols
 libc6-dev  - GNU C Library: Development Libraries and Header Files
 libc6-dev-i386 - GNU C Library: 32-bit development libraries for AMD64
 libc6-dev-x32 - GNU C Library: X32 ABI Development Libraries for AMD64
 libc6-i386 - GNU C Library: 32-bit shared libraries for AMD64
 libc6-udeb - GNU C Library: Shared libraries - udeb (udeb)
 libc6-x32  - GNU C Library: X32 ABI Shared libraries for AMD64
 locales-all - GNU C Library: Precompiled locale data
 nscd       - GNU C Library: Name Service Cache Daemon
Closes: 1125678 1125748 1126266 1131435 1131887 1132499
Changes:
 glibc (2.36-9+deb12u14) bookworm; urgency=medium
 .
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - Fix a performance bottleneck with the Address Sanitizer (ASAN) on 32-bit
       arm.
     - Fix _dl_find_object when ld.so has LOAD segment gaps, causing wrong
       backtrace unwinding. This affects at least arm64.
     - Add GLIBC_ABI_DT_X86_64_PLT symbol version on amd64.
     - Fix typo in wmemset ifunc selector that caused AVX2/AVX512 paths to be
       skipped.
     - Fix POWER optimized rawmemchr function on ppc64el.
     - Optimize trylock for high cache contention workloads.
     - Fix and integer overflow in _int_memalign leading to heap corruption
       (CVE-2026-0861).  Closes: #1125678.
     - Fix stack contents leak in getnetbyaddr (CVE-2026-0915).  Closes:
       #1125748.
     - Fix bug in wordexp, which could return uninitialized memory when using
       WRDE_REUSE together with WRDE_APPEND (CVE-2025-15281).  Closes: #1126266.
     - Fix invalid pointer arithmetic in ANSI_X3.110 iconv module
     - Fix a typo preventing new tst-wordexp-reuse-mem to run
     - Fix incorrect handling of DNS responses in gethostbyaddr and
       gethostbyaddr_r (CVE-2026-4437).  Closes: #1131435.
     - Fix invalid DNS hostnames returned by gethostbyaddr and
       gethostbyaddr_r (CVE-2026-4438).  Closes: #1131887.
     - Fix random failure of tst-link-map-contiguous-ldso.
     - Fix a possible crash due to an assertion failure when converting
       inputs from the IBM139x character sets (CVE-2026-4046).  Closes:
       #1132499.
   * d/p/amd64/local-revert-x86-64-add-GLIBC_ABI_DT_X86_64_PLT-version.diff:
     revert addition of the GLIBC_ABI_DT_X86_64_PLT symbol version used as ABI
     flag, as the dpkg-shlibdeps version in bookworm is not able to handle it
     (see #1122107).
Checksums-Sha1:
 715a0c64b5b54246fc0e15c17988fccc7112dfcd 15838 glibc_2.36-9+deb12u14_amd64-buildd.buildinfo
 f7c7b0ab1d3e961ffe898cc7606bbfce4f04ce68 2348072 libc-bin-dbgsym_2.36-9+deb12u14_amd64.deb
 2b3d6ee6b798b30a8b52ab719dc9cd59e79584e3 609144 libc-bin_2.36-9+deb12u14_amd64.deb
 8f4b8b908e358d1af45bc44a48c3abe6cec49fae 29484 libc-dev-bin-dbgsym_2.36-9+deb12u14_amd64.deb
 0211dbd54d99f71c51b1cd56aab24bc991ecdd53 48056 libc-dev-bin_2.36-9+deb12u14_amd64.deb
 d63270c916984c88c4acd5f2915ff7dfbc9d82cd 44492 libc-devtools-dbgsym_2.36-9+deb12u14_amd64.deb
 18961d08d8019fca760008031e2af65b8dd91928 55684 libc-devtools_2.36-9+deb12u14_amd64.deb
 89d2a27e893a8aa78e59147f1b3dd3fde56e5fdc 7389180 libc6-dbg_2.36-9+deb12u14_amd64.deb
 2ed0f74e0472f9a4fe0a8d5a9fa0c682f53de27d 15652 libc6-dev-dbgsym_2.36-9+deb12u14_amd64.deb
 978bfc0dae7ca246e46f45f54f9e79a17063a81e 1354596 libc6-dev-i386_2.36-9+deb12u14_amd64.deb
 caa080a4558ca30387e053c75f70463e0abb220e 1521392 libc6-dev-x32_2.36-9+deb12u14_amd64.deb
 d609b4707ac7cb95b042958e54fec4d78596ecfc 1903668 libc6-dev_2.36-9+deb12u14_amd64.deb
 1b03589c895b1ab4b90b4d1b471cc973cdfdabe1 7032764 libc6-i386-dbgsym_2.36-9+deb12u14_amd64.deb
 e10c7b0e68813fdd6e69f14693a9947b7ddb2e43 2458148 libc6-i386_2.36-9+deb12u14_amd64.deb
 cab594e115c0bd234f240fd96123f1d0b2e10597 1367452 libc6-udeb_2.36-9+deb12u14_amd64.udeb
 373cc16525ec5571d545fd82416bdf23de7c0788 7226524 libc6-x32-dbgsym_2.36-9+deb12u14_amd64.deb
 bfd5d7477095b23287bc067124ed54dd089d70ca 2588160 libc6-x32_2.36-9+deb12u14_amd64.deb
 c534c6c7f912b61ca26b7cf4082235a0343b8751 2759320 libc6_2.36-9+deb12u14_amd64.deb
 76880bb2dace5645b4add700a2eb3eb149dcc6af 10653316 locales-all_2.36-9+deb12u14_amd64.deb
 6c33c354ff0d21cd7c4aaecd3e6db73ebb1215d2 274240 nscd-dbgsym_2.36-9+deb12u14_amd64.deb
 c3fd9054454ea439125d28bce91ae11328d10a93 104816 nscd_2.36-9+deb12u14_amd64.deb
Checksums-Sha256:
 1bd6c77f6bf5e762f78a58cb8f2598e583807650198dcc305025dd557fd4a24f 15838 glibc_2.36-9+deb12u14_amd64-buildd.buildinfo
 82f6d9c7af99a07d1e4eb335391e1341137b4855c576abbe0c55f2a3ec0883ef 2348072 libc-bin-dbgsym_2.36-9+deb12u14_amd64.deb
 e667401af91fad95f15b3ebd25d1abd8373fd18b00dc32219678413170544e84 609144 libc-bin_2.36-9+deb12u14_amd64.deb
 9d4da9bee1904cac7b2859f88179740d49d7164a23694da1b14693087edd9bb4 29484 libc-dev-bin-dbgsym_2.36-9+deb12u14_amd64.deb
 f61d923b703401023bec2ac3d9d1c9ad7341930fbe11736f7f5ef64b489d03c4 48056 libc-dev-bin_2.36-9+deb12u14_amd64.deb
 85ef3d2c2b8331ddc08aeaebe2dd9cecae0fb1060f08a879c609986adba115c5 44492 libc-devtools-dbgsym_2.36-9+deb12u14_amd64.deb
 3c073eb3a30e9ef8f3673f6a554e66c9f556cacabbcca7ac785659ac4d210549 55684 libc-devtools_2.36-9+deb12u14_amd64.deb
 cf1a1e6524267ff724812813a1735b41a04213388d1bd30df9647db4300e682d 7389180 libc6-dbg_2.36-9+deb12u14_amd64.deb
 1fd0b79bff290e55b774e0fe2060d5106cb0e97f6ac606a70d618014659d7492 15652 libc6-dev-dbgsym_2.36-9+deb12u14_amd64.deb
 4850a442d15f4683daa529ab773a429cafcec749782ea6d56ef0d35290380180 1354596 libc6-dev-i386_2.36-9+deb12u14_amd64.deb
 042894bfdd06e00d6391a31a43734b66dc84347ecbccddac7c3d29d428cf23d0 1521392 libc6-dev-x32_2.36-9+deb12u14_amd64.deb
 0218fc2befcd784c1b0c6292c0a137ce89fad054efaa579ad083bee0f2c01aae 1903668 libc6-dev_2.36-9+deb12u14_amd64.deb
 b812708c6e05726dcee06d0cf7d95b18366f11d14603c16b431dc7c802233af4 7032764 libc6-i386-dbgsym_2.36-9+deb12u14_amd64.deb
 2af9a760c2b3dce0a432d78076ca98d3ba8f8070cadb3e5898aa0368ba1fceef 2458148 libc6-i386_2.36-9+deb12u14_amd64.deb
 36d753c0b8aa045210ce27d0476526b99c11701555d1ba006f795a644d6d6420 1367452 libc6-udeb_2.36-9+deb12u14_amd64.udeb
 8d4c3974ecfef606e21f23e3ed91ef7b3799d78c55008e5b50af3ccedd169a73 7226524 libc6-x32-dbgsym_2.36-9+deb12u14_amd64.deb
 81e46e6ec3ca971bad24ef7049838de1ae695b1c4c942995a909594af75a048f 2588160 libc6-x32_2.36-9+deb12u14_amd64.deb
 ba4f88f73dbc3ae9055f3c20f4523bfdbaf1ad13ff95e258924f77d20b4fbedf 2759320 libc6_2.36-9+deb12u14_amd64.deb
 1e04749059effed50132c7e47b988c98269e40d636f2fefc257592d14ea7bf25 10653316 locales-all_2.36-9+deb12u14_amd64.deb
 717f215eabca587e2e92aeeb57f0bf83b44da390ed4fa4833bd06062fc703ee3 274240 nscd-dbgsym_2.36-9+deb12u14_amd64.deb
 91bf16a8fe21812d3783c467a04438563dace007529620ba22fbb81f0126b691 104816 nscd_2.36-9+deb12u14_amd64.deb
Files:
 43ea7cc675546604c5e6ce66f27ce9cd 15838 libs required glibc_2.36-9+deb12u14_amd64-buildd.buildinfo
 c8c30d71bdc4605059ad18ee8ea90e1d 2348072 debug optional libc-bin-dbgsym_2.36-9+deb12u14_amd64.deb
 c55125399be9edff1c4d7fa81d0debd5 609144 libs required libc-bin_2.36-9+deb12u14_amd64.deb
 548ae0477e7251d8b5f41e9124a657a3 29484 debug optional libc-dev-bin-dbgsym_2.36-9+deb12u14_amd64.deb
 bf7479b3c9274ec601c49bf7a91027b1 48056 libdevel optional libc-dev-bin_2.36-9+deb12u14_amd64.deb
 874ba06dd22d2ff284b87b0ec44c22eb 44492 debug optional libc-devtools-dbgsym_2.36-9+deb12u14_amd64.deb
 64f824867f8cd36ff2c892af1626e485 55684 devel optional libc-devtools_2.36-9+deb12u14_amd64.deb
 1511064ef9c1f6d7e3f0fc4825fbe77c 7389180 debug optional libc6-dbg_2.36-9+deb12u14_amd64.deb
 3770169d2e312e9b4dea38ce5eeb00b7 15652 debug optional libc6-dev-dbgsym_2.36-9+deb12u14_amd64.deb
 873414c4f5d68cfe81de275204e0cff0 1354596 libdevel optional libc6-dev-i386_2.36-9+deb12u14_amd64.deb
 31f092c8636ad983d9a66d1fd346d4af 1521392 libdevel optional libc6-dev-x32_2.36-9+deb12u14_amd64.deb
 7b7c52938e39827b7bfd99ab986b2a32 1903668 libdevel optional libc6-dev_2.36-9+deb12u14_amd64.deb
 36e541522e4e26d0dba80bbfe710eb77 7032764 debug optional libc6-i386-dbgsym_2.36-9+deb12u14_amd64.deb
 194ee69dd54a523f60170701e02a2410 2458148 libs optional libc6-i386_2.36-9+deb12u14_amd64.deb
 b6c20ca891bfe0661f1325d1d48324b3 1367452 debian-installer optional libc6-udeb_2.36-9+deb12u14_amd64.udeb
 387c066b506324b0a39b3075f5ea3ea9 7226524 debug optional libc6-x32-dbgsym_2.36-9+deb12u14_amd64.deb
 47c3ff995dc62fb1d434c249412ce4ff 2588160 libs optional libc6-x32_2.36-9+deb12u14_amd64.deb
 8d98f0c882f269aaee8437bcfe89346e 2759320 libs optional libc6_2.36-9+deb12u14_amd64.deb
 5efd93a2c7921bd05f0bec100b94094e 10653316 localization optional locales-all_2.36-9+deb12u14_amd64.deb
 6a79f786f4905674e1fc65473ebdf09a 274240 debug optional nscd-dbgsym_2.36-9+deb12u14_amd64.deb
 509c498c05915917943bd5e161ef908d 104816 admin optional nscd_2.36-9+deb12u14_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=UhxC
-----END PGP SIGNATURE-----