Accepted python-h2 4.0.0-3+deb11u1 (source) into oldoldstable-security

To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
Subject: Accepted python-h2 4.0.0-3+deb11u1 (source) into oldoldstable-security
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Tue, 02 Sep 2025 16:00:19 +0000
Message-id: <[🔎] E1utTQh-00F1Oz-1C@seger.debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Sep 2025 17:40:04 +0200
Source: python-h2
Architecture: source
Version: 4.0.0-3+deb11u1
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian Python Team <team+python@tracker.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Closes: 1112348
Changes:
 python-h2 (4.0.0-3+deb11u1) bullseye-security; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS team.
   * d/patches/CVE-2025-57804.patch: Add patch to fix CVE-2025-57804.
     - An HTTP/2 request splitting vulnerability that allows attackers to
       perform request smuggling attacks by injecting CRLF characters into
       headers has been fixed (closes: #1112348).
Checksums-Sha1:
 81fd5975eb323d89493e5ac803480df877faaf05 2211 python-h2_4.0.0-3+deb11u1.dsc
 2d23cc9a7c8cbae068ffff7a933133b0318c9caf 2143850 python-h2_4.0.0.orig.tar.gz
 966b8e8447381150199a3991ecefcf93ce6485ac 4880 python-h2_4.0.0-3+deb11u1.debian.tar.xz
 24fc89f6d26ed063efffda56b4ef788ba9aa1131 7520 python-h2_4.0.0-3+deb11u1_amd64.buildinfo
Checksums-Sha256:
 0be40a8cb2974426e71a1897df17ea7e035ceea07520a9f6967d619152fd9c9f 2211 python-h2_4.0.0-3+deb11u1.dsc
 bb7ac7099dd67a857ed52c815a6192b6b1f5ba6b516237fc24a085341340593d 2143850 python-h2_4.0.0.orig.tar.gz
 e2722f6d220d89ef090e6d58ae80cf5939c12d0242012295743b647aa9e2a754 4880 python-h2_4.0.0-3+deb11u1.debian.tar.xz
 6af4c190a745bc3806002cfad7cb748d6fba95a43aca6660b6b39439307f6b3a 7520 python-h2_4.0.0-3+deb11u1_amd64.buildinfo
Files:
 85161af2fa687cd5179dbf72150b587f 2211 python optional python-h2_4.0.0-3+deb11u1.dsc
 d086f6a9746a5f4eeb63bb3d0a482e1f 2143850 python optional python-h2_4.0.0.orig.tar.gz
 54a91ee41171e02567de00459fefec17 4880 python optional python-h2_4.0.0-3+deb11u1.debian.tar.xz
 b33f85d0d69a629de7b653555938e12c 7520 python optional python-h2_4.0.0-3+deb11u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=t2Uh
-----END PGP SIGNATURE-----

Attachment: pgpdvOpNWjOXD.pgp
Description: PGP signature

Reply to:

Prev by Date: Accepted python-eventlet 0.26.1-7+deb11u2 (source) into oldoldstable-security
Next by Date: Accepted node-cipher-base 1.0.4-4+deb11u1 (source) into oldoldstable-security
Previous by thread: Accepted python-eventlet 0.26.1-7+deb11u2 (source) into oldoldstable-security
Next by thread: Accepted node-cipher-base 1.0.4-4+deb11u1 (source) into oldoldstable-security
Index(es):
- Date
- Thread