XPost: linux.debian.maint.boot

Control: tag -1 d-i

On Sun, Mar 16, 2025 at 09:57:10AM +0100, Christian Kastner wrote:

[ Reason ]

This cherry-picks a fix + test for CVE-2025-1390, where capability configurations not starting with "@" were incorrectly recognized as
group names.

d-i ack needed please.

Thanks,

--
Jonathan Wiltshire jmw@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 ed25519/0x196418AAEB74C8A1: CA619D65A72A7BADFC96D280196418AAEB74C8A1

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

XPost: linux.debian.maint.boot

Jonathan Wiltshire <jmw@debian.org> (2025-04-14):

On Sun, Mar 16, 2025 at 09:57:10AM +0100, Christian Kastner wrote:

[ Reason ]

This cherry-picks a fix + test for CVE-2025-1390, where capability configurations not starting with "@" were incorrectly recognized as
group names.

d-i ack needed please.

Feel free to go ahead, thanks.


Cheers,
--
Cyril Brulebois (kibi@debian.org) <https://debamax.com/>
D-I release manager -- Release team member -- Freelance Consultant

-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEEtg6/KYRFPHDXTPR4/5FK8MKzVSAFAmf9YdEACgkQ/5FK8MKz VSCnyhAAvZvRFuia9sAR72vWvZTQk1QdhMew8euLJhUNtrRdlob3t/kvHmo7otws YN7HH8h7q0BVtzBiKYw7nsbkzXAXvOkeNAsZXKYXUf0tfM6uNO3BWVR9ufaZzF4m akEZkdXFtNYjFCM5lqCWN2QjAo2Z4eEON5C0lB299XT1uIE+wBj7P/ooXTDXsthW tfV7L/apMjGu5FnZpyp/6PjELw17MKJc0wfxFD3nVw5HE90wp0BJV4ZFt/M6fcVd SLG+bDCoc5mbL7ywx4haXnM8RH5S/q/v1NeLOH+s75dKurJbRrNtLVe9CFqrlfEW 4HpIrDEapZpyEotNoiFq6uCvar9Zd3zbZpzH40w9VEEwb4aSN8+zmOyf8WQ6j9DG Ug81EyandPlKkTbyrspB82d+KZN9fpmK0Rf4YufplZ98YL0CE1rsOlu5QJ8lHVz0 gG2ADfnI4Jzm5pE1ExlelhV2N5for2yrcnQ1eihe0J3xoXnUiOMvLSn+gp+hvp2y 2ruBXvG744eFysSapH6ufcZxS/38o1EKZ6rqQBcrsNaEEifU5+IRdz7GVaS35FQO 0HjA0Ny2ouebNgcKF/1LZ4aieg3eAriEOHJyG34NHwAa4Ebc4Ivrk7+j/+B5TCL+ jH25uT+klRdRakU4lT9mG2/ieh2lGGd5QJ+supVw4WZBlp6YaRU=
=l61f
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
*