Processing of qt6-virtualkeyboard_6.6.2+dfsg-1_source.changes

[Debian FTP Masters]

qt6-virtualkeyboard_6.6.2+dfsg-1_source.changes uploaded successfully to 
localhost
along with the files:
  qt6-virtualkeyboard_6.6.2+dfsg-1.dsc
  qt6-virtualkeyboard_6.6.2+dfsg.orig.tar.xz
  qt6-virtualkeyboard_6.6.2+dfsg-1.debian.tar.xz
  qt6-virtualkeyboard_6.6.2+dfsg-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

qt6-virtualkeyboard_6.6.2+dfsg-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 23:12:42 +0100
Source: qt6-virtualkeyboard
Architecture: source
Version: 6.6.2+dfsg-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-virtualkeyboard (6.6.2+dfsg-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 7362bde989f0d69b540ba21dd5b7b30cae2d5c63 3103 
qt6-virtualkeyboard_6.6.2+dfsg-1.dsc
 559c3d748a1047e51510d45ea4f06ba1edbd207f 1442892 
qt6-virtualkeyboard_6.6.2+dfsg.orig.tar.xz
 7e23b0bd41f091fc94bfbfd235f697c528796fa6 9660 
qt6-virtualkeyboard_6.6.2+dfsg-1.debian.tar.xz
 66c81780e5930fe7961c909cc7ed50cf1cd73078 13621 
qt6-virtualkeyboard_6.6.2+dfsg-1_source.buildinfo
Checksums-Sha256:
 f2c0bffb06d3d4237e4cbf8fe85e433d01470d945e6f08c4983dfb57b440b1b9 3103 
qt6-virtualkeyboard_6.6.2+dfsg-1.dsc
 5312677df6326a1c11eaa03e01dd2571d99e6b6b0a6611a450cf0e778a9d9ce8 1442892 
qt6-virtualkeyboard_6.6.2+dfsg.orig.tar.xz
 27fd49b7370b57a5cbb882970dd4d61422b907a256859377672a2aa3ceed240e 9660 
qt6-virtualkeyboard_6.6.2+dfsg-1.debian.tar.xz
 a06cce2ba6ab52b4d91df81e13af16d426c87b6bf38715d2cf4bb480d509c43e 13621 
qt6-virtualkeyboard_6.6.2+dfsg-1_source.buildinfo
Files:
 62567d0bc72aa524a7d382d2f35f8e3d 3103 libs optional 
qt6-virtualkeyboard_6.6.2+dfsg-1.dsc
 39aadad5249fb88478e151bf7a7cd2e6 1442892 libs optional 
qt6-virtualkeyboard_6.6.2+dfsg.orig.tar.xz
 225ad7182d1933b921ab9fed8856fb05 9660 libs optional 
qt6-virtualkeyboard_6.6.2+dfsg-1.debian.tar.xz
 d1f416f7f6a114e07413ae09a468ed5d 13621 libs optional 
qt6-virtualkeyboard_6.6.2+dfsg-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=HGu/
-END PGP SIGNATURE-



pgpK6a5Ju7gVH.pgp
Description: PGP signature

Processing of qt6-sensors_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-sensors_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-sensors_6.6.2-1.dsc
  qt6-sensors_6.6.2.orig.tar.xz
  qt6-sensors_6.6.2-1.debian.tar.xz
  qt6-sensors_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

qt6-sensors_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 23:01:12 +0100
Source: qt6-sensors
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-sensors (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
   * Update lintian-overrides.
Checksums-Sha1:
 485ac82fac396398905a4f1fe99f8bb567098e17 2862 qt6-sensors_6.6.2-1.dsc
 39b823955ef980306cb014f11baf74220c5aac74 1494024 qt6-sensors_6.6.2.orig.tar.xz
 47c86989384369c02def860f6741ab1acb9b7d20 10724 
qt6-sensors_6.6.2-1.debian.tar.xz
 9ef6fa8a6c0851375bcaebf86a8cf66878afbfa1 13474 
qt6-sensors_6.6.2-1_source.buildinfo
Checksums-Sha256:
 08e0753a7f5e272847ffef3b95c2eed672da75d34521d8711c985b53e595e800 2862 
qt6-sensors_6.6.2-1.dsc
 4a6f9fcee6d23dd0f7e8b84b0faa12153ad779f09a266bbb6fb657eb16287c28 1494024 
qt6-sensors_6.6.2.orig.tar.xz
 c9a2bd71d5a8e4df5543a179559ca4df77e8c801eb1aee6cf05549771d57adf8 10724 
qt6-sensors_6.6.2-1.debian.tar.xz
 385adbe1480d0c5abfd19321910600a7bed117a98d33e561b03b4fd5144193a5 13474 
qt6-sensors_6.6.2-1_source.buildinfo
Files:
 703964f5464ec5b3aec134dedbad06a7 2862 libs optional qt6-sensors_6.6.2-1.dsc
 65fc1c3477cc4c4c6df1eda1ac2f0c4f 1494024 libs optional 
qt6-sensors_6.6.2.orig.tar.xz
 8b7b8c569c962ef24a78331347124d44 10724 libs optional 
qt6-sensors_6.6.2-1.debian.tar.xz
 7ca8f8c834b4be8fa55906de5f895677 13474 libs optional 
qt6-sensors_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=bn4C
-END PGP SIGNATURE-



pgpTvdnkWoZlV.pgp
Description: PGP signature

qt6-scxml_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 22:52:50 +0100
Source: qt6-scxml
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-scxml (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 36c310d6bb4bb2ad8af69ced2e5aadd99a7541de 3000 qt6-scxml_6.6.2-1.dsc
 ff1884a44c5800d8233998b0c07824c99577d552 1167628 qt6-scxml_6.6.2.orig.tar.xz
 d2cc166fb8653618f193095a6f34ad7a39b824c4 14552 qt6-scxml_6.6.2-1.debian.tar.xz
 002d2da6251543cdbacec5c6d8f28e797954e24b 13466 
qt6-scxml_6.6.2-1_source.buildinfo
Checksums-Sha256:
 3288e9dcb34a1791e577c72dc35593bd7a0c5db71a79db257ef6720831bbdccb 3000 
qt6-scxml_6.6.2-1.dsc
 094982f0ff828070b2282c97b68229ec8ff4d68b32f335ab1cba81530a40a43e 1167628 
qt6-scxml_6.6.2.orig.tar.xz
 f3588874f57de582ba981ff70c8e2c283c2a5953e4f68e69df447590419d49f0 14552 
qt6-scxml_6.6.2-1.debian.tar.xz
 d206d8e5c00ba770de3b3a222b9227d4115ee6caf9b425f1576162f5d9779184 13466 
qt6-scxml_6.6.2-1_source.buildinfo
Files:
 b4480dedc88ea9009e6d13f84eb75c93 3000 libs optional qt6-scxml_6.6.2-1.dsc
 3589d1c9b7b3d57058d422a64a1539a7 1167628 libs optional 
qt6-scxml_6.6.2.orig.tar.xz
 9ce597d5cdf2088c46f2b581850b039e 14552 libs optional 
qt6-scxml_6.6.2-1.debian.tar.xz
 f477c694aca7ffdc096d2ce8c0fde902 13466 libs optional 
qt6-scxml_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=GQ55
-END PGP SIGNATURE-



pgpWjI0r4nE6d.pgp
Description: PGP signature

qt6-quicktimeline_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 22:36:11 +0100
Source: qt6-quicktimeline
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-quicktimeline (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 2a79047ed966d716ac6b50e7f59574d96de9feea 2380 qt6-quicktimeline_6.6.2-1.dsc
 3e4c63dbf5f0316574e7580330084db991c7eb70 104816 
qt6-quicktimeline_6.6.2.orig.tar.xz
 81fead8ec3906f8004b91c0969a748eb78b3c1a3 4332 
qt6-quicktimeline_6.6.2-1.debian.tar.xz
 004a6997219ca106c3471e14d3de5c22e46d1c52 13451 
qt6-quicktimeline_6.6.2-1_source.buildinfo
Checksums-Sha256:
 68daf86674cdbeee4f39a60abbccfa4d7b9088ae41cd15dfe95d30ed41dc501c 2380 
qt6-quicktimeline_6.6.2-1.dsc
 8c4e5273c85a23e93da3375ce5e97261707fe9800076aaf164e7e00cc14d9919 104816 
qt6-quicktimeline_6.6.2.orig.tar.xz
 23001cfa7f2b4f9078e4df9748d6b4b6175c27cb5c2447151f62398beb989ee7 4332 
qt6-quicktimeline_6.6.2-1.debian.tar.xz
 6f4788b91ab0800021e9c6a45c759a1870b73c9b99fac64f66b7679a242b35ae 13451 
qt6-quicktimeline_6.6.2-1_source.buildinfo
Files:
 dba60f712a9be6b7a713d7d65004e188 2380 libs optional 
qt6-quicktimeline_6.6.2-1.dsc
 1e6177f0a97e0bf4873535c3aebec182 104816 libs optional 
qt6-quicktimeline_6.6.2.orig.tar.xz
 1e96e3de22d2ffbb4e7b4ffe0d9c08ba 4332 libs optional 
qt6-quicktimeline_6.6.2-1.debian.tar.xz
 b356a7bce09bdab12522c5766b27f12f 13451 libs optional 
qt6-quicktimeline_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=Sf0j
-END PGP SIGNATURE-



pgplgOa9OayWP.pgp
Description: PGP signature

Processing of qt6-scxml_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-scxml_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-scxml_6.6.2-1.dsc
  qt6-scxml_6.6.2.orig.tar.xz
  qt6-scxml_6.6.2-1.debian.tar.xz
  qt6-scxml_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

Processing of qt6-quicktimeline_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-quicktimeline_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-quicktimeline_6.6.2-1.dsc
  qt6-quicktimeline_6.6.2.orig.tar.xz
  qt6-quicktimeline_6.6.2-1.debian.tar.xz
  qt6-quicktimeline_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

Processed: tagging 1064051, tagging 1064054, tagging 1064052, tagging 1064053, tagging 1064055, tagging 1064061 ...

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> tags 1064051 + upstream
Bug #1064051 [src:azure-uamqp-python] azure-uamqp-python: CVE-2024-25110
Added tag(s) upstream.
> tags 1064054 + upstream
Bug #1064054 [src:qtbase-opensource-src-gles] qtbase-opensource-src-gles: 
CVE-2024-25580
Added tag(s) upstream.
> tags 1064052 + upstream
Bug #1064052 [src:qt6-base] qt6-base: CVE-2024-25580
Ignoring request to alter tags of bug #1064052 to the same tags previously set
> tags 1064053 + upstream
Bug #1064053 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Bug #1064056 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Added tag(s) upstream.
Added tag(s) upstream.
> tags 1064055 + upstream
Bug #1064055 [src:nodejs] nodejs: CVE-2023-46809 CVE-2024-22019 CVE-2024-21892
Added tag(s) upstream.
> tags 1064061 + upstream
Bug #1064061 [src:wpa] wpa: CVE-2023-52160
Added tag(s) upstream.
> tags 1064062 + upstream
Bug #1064062 [src:iwd] iwd: CVE-2023-52161
Added tag(s) upstream.
> tags 1064063 + upstream
Bug #1064063 [src:plasma-workspace] plasma-workspace: CVE-2024-1433
Added tag(s) upstream.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
1064051: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064051
1064052: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064052
1064053: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064053
1064054: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064054
1064055: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064055
1064056: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064056
1064061: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064061
1064062: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064062
1064063: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064063
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processed: found 1064052 in 6.6.1+dfsg-6, found 1064052 in 6.4.2+dfsg-21, tagging 1064052

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> found 1064052 6.6.1+dfsg-6
Bug #1064052 [src:qt6-base] qt6-base: CVE-2024-25580
Marked as found in versions qt6-base/6.6.1+dfsg-6.
> found 1064052 6.4.2+dfsg-21
Bug #1064052 [src:qt6-base] qt6-base: CVE-2024-25580
Marked as found in versions qt6-base/6.4.2+dfsg-21.
> tags 1064052 + upstream
Bug #1064052 [src:qt6-base] qt6-base: CVE-2024-25580
Added tag(s) upstream.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
1064052: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064052
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Processing of qt6-5compat_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-5compat_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-5compat_6.6.2-1.dsc
  qt6-5compat_6.6.2.orig.tar.xz
  qt6-5compat_6.6.2-1.debian.tar.xz
  qt6-5compat_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

qt6-5compat_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 19:54:48 +0100
Source: qt6-5compat
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-5compat (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 e065b00c6059ce7a8f4837323502865be2e24181 2771 qt6-5compat_6.6.2-1.dsc
 f6aa18b283cbf3d73a1d2a6849b7fe437780b534 14632168 qt6-5compat_6.6.2.orig.tar.xz
 98f65724390513978f5a6048bbdcee6369180882 8988 qt6-5compat_6.6.2-1.debian.tar.xz
 783261308c5e9c4be9463c0932f79ac06907593b 13483 
qt6-5compat_6.6.2-1_source.buildinfo
Checksums-Sha256:
 1617b7287856432dc7477b078c9ca522d5554281bfd0959b1d0281fb5c9c1b5f 2771 
qt6-5compat_6.6.2-1.dsc
 e07b08ab7658e4856f07e3262ab342df4ed7e7a69f2720e56bb2128729191967 14632168 
qt6-5compat_6.6.2.orig.tar.xz
 b7eb62abe04a90d2910a07594d2e0c840c50819ac136d2ee9988e66d733952a8 8988 
qt6-5compat_6.6.2-1.debian.tar.xz
 9a5610382f36cc2da6f020899625278c4d378dff796a7008cbc923e03727ef7c 13483 
qt6-5compat_6.6.2-1_source.buildinfo
Files:
 7c5a05cbcb6aa1197c6db80f72434145 2771 libs optional qt6-5compat_6.6.2-1.dsc
 ea2e117fd80427ecd3687ce884713f7a 14632168 libs optional 
qt6-5compat_6.6.2.orig.tar.xz
 f560a9f99f00f9099bc2f532a528197c 8988 libs optional 
qt6-5compat_6.6.2-1.debian.tar.xz
 f6dbe376888b36ec47d7556292774672 13483 libs optional 
qt6-5compat_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=QfCA
-END PGP SIGNATURE-



pgpm3AFmbNcfN.pgp
Description: PGP signature

Processing of qt6-lottie_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-lottie_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-lottie_6.6.2-1.dsc
  qt6-lottie_6.6.2.orig.tar.xz
  qt6-lottie_6.6.2-1.debian.tar.xz
  qt6-lottie_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

Processing of qt6-datavis3d_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-datavis3d_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-datavis3d_6.6.2-1.dsc
  qt6-datavis3d_6.6.2.orig.tar.xz
  qt6-datavis3d_6.6.2-1.debian.tar.xz
  qt6-datavis3d_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

qt6-lottie_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 19:47:32 +0100
Source: qt6-lottie
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-lottie (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 4f5065a9041a7e05becd88c61a5aca5d7922342a 2379 qt6-lottie_6.6.2-1.dsc
 7e0aca09fc70fac42af491d4a929476efb618640 83340 qt6-lottie_6.6.2.orig.tar.xz
 e41999f3f44e9ed5f2f724078fd6b1fb69e0528f 5488 qt6-lottie_6.6.2-1.debian.tar.xz
 f89250620ddb3c23d9e01e11e02e1f9a75fb133c 13423 
qt6-lottie_6.6.2-1_source.buildinfo
Checksums-Sha256:
 b54f6d0e451312d20b9b120689f4d60d4a83c77574d7b453e30eae3ca2b2e6c4 2379 
qt6-lottie_6.6.2-1.dsc
 276e16da2cba7c242c8fa4032c3838d352c356d6607574cfdc4a2b274bb910c3 83340 
qt6-lottie_6.6.2.orig.tar.xz
 3ba04dfa964519c574c8b36054e7df23b03bc0eab7e4da4354b89c03988f40a6 5488 
qt6-lottie_6.6.2-1.debian.tar.xz
 6bbc01b8a6a8be10e5477dd6fd5c924ac5c79bb70def71c28350f2e5ef0f1900 13423 
qt6-lottie_6.6.2-1_source.buildinfo
Files:
 2df204fa97209bd256ce5b5302bb07b2 2379 libs optional qt6-lottie_6.6.2-1.dsc
 5151d107edbe2a85c69cde999554aa6a 83340 libs optional 
qt6-lottie_6.6.2.orig.tar.xz
 1d11a338e928782fbddc5b9bd56a559a 5488 libs optional 
qt6-lottie_6.6.2-1.debian.tar.xz
 27577e4d0eb9c5cb38a8493a15134000 13423 libs optional 
qt6-lottie_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=5zMN
-END PGP SIGNATURE-



pgpDkcbZKHnLt.pgp
Description: PGP signature

qt6-datavis3d_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 19:41:00 +0100
Source: qt6-datavis3d
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-datavis3d (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 f774bef718a24db2022194d5a89453329a270372 2793 qt6-datavis3d_6.6.2-1.dsc
 c29221c8caf1f89a47fabcfab8f91afffd4404d7 3947636 
qt6-datavis3d_6.6.2.orig.tar.xz
 83b2064bf54838392882657ecf2bde141deaeb3b 23140 
qt6-datavis3d_6.6.2-1.debian.tar.xz
 97f76999e7d31b5cc4aa45e1beee89563bb7c7a3 13482 
qt6-datavis3d_6.6.2-1_source.buildinfo
Checksums-Sha256:
 8428fcbbeca11414de23033522a8b35c0dc5996be3d6ab846358f8094fd1a58e 2793 
qt6-datavis3d_6.6.2-1.dsc
 314a6b2904006d151c2ec7d753814c8c63903ff814069baf9c4978d49d2a1c47 3947636 
qt6-datavis3d_6.6.2.orig.tar.xz
 94b9f15a56626347db11fc454302a5d34b2f54a231ee5080d91854a4d4d5ce8b 23140 
qt6-datavis3d_6.6.2-1.debian.tar.xz
 52aac37cbb1b010b432af34cdb3cafd2295a8597f7e810464e741bce0fc3a3ff 13482 
qt6-datavis3d_6.6.2-1_source.buildinfo
Files:
 5ed66aded6ee83d5b73ec6d36129fc49 2793 libs optional qt6-datavis3d_6.6.2-1.dsc
 2c41957387ee5f015ed3066f3c9ac477 3947636 libs optional 
qt6-datavis3d_6.6.2.orig.tar.xz
 2db5193bd0f9b77ac922a4c4612e93f9 23140 libs optional 
qt6-datavis3d_6.6.2-1.debian.tar.xz
 b987fb3ff33646a565bb6cfbc84506fc 13482 libs optional 
qt6-datavis3d_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=o3DZ
-END PGP SIGNATURE-



pgpcIQpS0CKZT.pgp
Description: PGP signature

Processing of qt6-serialport_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-serialport_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-serialport_6.6.2-1.dsc
  qt6-serialport_6.6.2.orig.tar.xz
  qt6-serialport_6.6.2-1.debian.tar.xz
  qt6-serialport_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

qt6-serialport_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 19:32:17 +0100
Source: qt6-serialport
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-serialport (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 92e744f1e6694c7966420782c18d202b2187e71a 2539 qt6-serialport_6.6.2-1.dsc
 1e5629b5398d5980cf9746b4c057cfc559b19454 270564 
qt6-serialport_6.6.2.orig.tar.xz
 c95e7c3b0772aba1b73f6306ad68c9eb2a35ba7a 6188 
qt6-serialport_6.6.2-1.debian.tar.xz
 09e6db7988f2c74e1b8715acd5b093e038704f8f 12179 
qt6-serialport_6.6.2-1_source.buildinfo
Checksums-Sha256:
 3e0a3cb4210069d191b3fdf6a82d38fa3a870ac3043a0167847f7e696890a7d3 2539 
qt6-serialport_6.6.2-1.dsc
 ba1e0c9caeb1ee06ce940ce32c810e6fab826124281469ad0eecff56f375459a 270564 
qt6-serialport_6.6.2.orig.tar.xz
 5a1aac7f39df35f11a208f4a84306b20a3ffe8bad394bfaa0d20cb5abe2febfb 6188 
qt6-serialport_6.6.2-1.debian.tar.xz
 dcfa0c6fe81657dece3c4d40485cd165162188480340749bb0680e6f0de96876 12179 
qt6-serialport_6.6.2-1_source.buildinfo
Files:
 b490d70f0a3c37211936403940991310 2539 libs optional qt6-serialport_6.6.2-1.dsc
 9a1852b4378ef2f9ee88654c6662e71b 270564 libs optional 
qt6-serialport_6.6.2.orig.tar.xz
 60e6283a722bc92aba61c9af66bd8e42 6188 libs optional 
qt6-serialport_6.6.2-1.debian.tar.xz
 f1b7e2db13ded8ecc9fd772a663153c6 12179 libs optional 
qt6-serialport_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-

iQIzBAEBCgAdFiEEYodBXDR68cxZHu3Knp96YDB3/lYFAmXPqj0ACgkQnp96YDB3
/lb/jA/+NkGmc4VUPHgn+66CXhmZUyrV6AXWaaOMllS8wUcGUVR/OZpG9kNKjyQs
igR4kx072AEq4O0xsy+tVZL1Pz+EYHWc9LJWX0TS8hxnqM3TqCSx85Wa4xpDW/XQ
AOZu3ID6bQDTYpl8ZoSd4OtMF7JwK/cRAal6eXW+MWQpHpj99WB5m44DpzEPmoIS
76bv1MBEq3Q+uDQjmfQ9K4mMf/K+SvS9HEFlj6DlBCzKlFhJRAmYvve7nitydDqa
72tNEMA04kzudaHekXLA4NOldfWEFzVpRgFWFmpyi9AZluDPat1Xiob+x69vwfzQ
UWZNAasPKsT5FrYZ+8l84o0Vmrir1T8gJK4uuy7qHOQDnjcrFVQ4IJsZ62zFUQZm
d6qdZZWa8lM2QGxFcO/AzH98g0dxEN0amNmO1sI4D6WRb0TS0eiz6fNkCVn6B/Df
0FmCqvhhR3yVDoW6RZvM2pF1v+oadwRuTzcRTakFsyXRTtYEIEHeZp0sEiwMj/oH
xC9Y38PAOtJ57SC8vMly1/EXeGlVRAycg1gG40asG89u3Rxgc1DOG2PPjRFL9Ls3
FAjGv498IQiIYK5fPeypJ/tmQqxevbXtUS0Ohs3++ygJP1jZ3PoFr3E63uu7iKcM
X03SiQNaGnf5URit4J3q5l84yWXCh4+nEkX9t4GgEA71H05WkJg=
=8O9B
-END PGP SIGNATURE-



pgpFEMjDSovI5.pgp
Description: PGP signature

qt6-networkauth_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 19:27:44 +0100
Source: qt6-networkauth
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-networkauth (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 4b6ee0bdeb7c14806018cb3f69031381ee0ecd59 2678 qt6-networkauth_6.6.2-1.dsc
 5cf31118ee13ff0f03872d48911fad863a1201d4 143612 
qt6-networkauth_6.6.2.orig.tar.xz
 387739d1f02c6fe0df97acc6ddbd3d10f9c787a3 7700 
qt6-networkauth_6.6.2-1.debian.tar.xz
 c426d5ea1863ad093b27c859be28474017036d00 12208 
qt6-networkauth_6.6.2-1_source.buildinfo
Checksums-Sha256:
 6789629883a15e0b969880cc8a47cd00b300051fab094d83353daa66a6de3866 2678 
qt6-networkauth_6.6.2-1.dsc
 32bdd5550ba893b5fb7d07ea2a3adc1729ed8b4565dc4aa963fa21b978d332d2 143612 
qt6-networkauth_6.6.2.orig.tar.xz
 55f193a3640ce8c0c59cee8477e08897304760025409a784743c841b07384578 7700 
qt6-networkauth_6.6.2-1.debian.tar.xz
 75145ccde21297cb80e9bac4bbdac4c66dd1f4646b414989418372065e205d10 12208 
qt6-networkauth_6.6.2-1_source.buildinfo
Files:
 5354b36dad8cb7173e8b390ad087267e 2678 libs optional qt6-networkauth_6.6.2-1.dsc
 9897d9fe2ffe3bda76e87cfcf7783ace 143612 libs optional 
qt6-networkauth_6.6.2.orig.tar.xz
 be3adececa36588cc007c068819d81b1 7700 libs optional 
qt6-networkauth_6.6.2-1.debian.tar.xz
 9ec94751a1fc55a724dfba89a01da334 12208 libs optional 
qt6-networkauth_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=yANk
-END PGP SIGNATURE-



pgpGgcefIXfuM.pgp
Description: PGP signature

Processing of qt6-networkauth_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-networkauth_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-networkauth_6.6.2-1.dsc
  qt6-networkauth_6.6.2.orig.tar.xz
  qt6-networkauth_6.6.2-1.debian.tar.xz
  qt6-networkauth_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

Processing of qt6-imageformats_6.6.2-1_source.changes

[Debian FTP Masters]

qt6-imageformats_6.6.2-1_source.changes uploaded successfully to localhost
along with the files:
  qt6-imageformats_6.6.2-1.dsc
  qt6-imageformats_6.6.2.orig.tar.xz
  qt6-imageformats_6.6.2-1.debian.tar.xz
  qt6-imageformats_6.6.2-1_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

qt6-imageformats_6.6.2-1_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Thank you for your contribution to Debian.



Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 16 Feb 2024 19:22:31 +0100
Source: qt6-imageformats
Architecture: source
Version: 6.6.2-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers 
Changed-By: Patrick Franz 
Changes:
 qt6-imageformats (6.6.2-1) experimental; urgency=medium
 .
   [ Patrick Franz ]
   * New upstream release (6.6.2).
   * Bump Qt B-Ds to 6.6.2.
   * Build-depend on pkgconf instead of pkg-config as the latter has been
 superseded by the former.
Checksums-Sha1:
 52d4a477aa38f116cba33d5485c830946abf8825 2426 qt6-imageformats_6.6.2-1.dsc
 7ccbf9d189a5e07560fc1e53fc4ef73086eca374 1964116 
qt6-imageformats_6.6.2.orig.tar.xz
 7d8b65ce10a128424d3217bd0d4e691e52303a67 5280 
qt6-imageformats_6.6.2-1.debian.tar.xz
 237f1960ccb52bf18bdb1bc7f2e9e728e7e0b973 12159 
qt6-imageformats_6.6.2-1_source.buildinfo
Checksums-Sha256:
 4a80eaba1e58f404c62140cedbf0b358c8dae64c7a48a1b67a0114a5d84b5d2b 2426 
qt6-imageformats_6.6.2-1.dsc
 71584c9136d4983ad19fa2d017abbae57b055eb90c62a36bf3f45d6d21a87cb3 1964116 
qt6-imageformats_6.6.2.orig.tar.xz
 93696bd462756eae5b89e11a194aa1d08f7e8df0a4fd577db006435a35872808 5280 
qt6-imageformats_6.6.2-1.debian.tar.xz
 fd5202c8545d49ac1d5c464faf905218bfb0c5af5fd3b019a737671f968235c3 12159 
qt6-imageformats_6.6.2-1_source.buildinfo
Files:
 5bc60d3279d88ae931abb4ed7934c3f4 2426 libs optional 
qt6-imageformats_6.6.2-1.dsc
 150972b7fbf1c16ba95ce85439fc84e9 1964116 libs optional 
qt6-imageformats_6.6.2.orig.tar.xz
 1fbfa6139b160aaa835d5d38d127bd63 5280 libs optional 
qt6-imageformats_6.6.2-1.debian.tar.xz
 6dfc8a967ceac424bfd48e5ae7e28dcb 12159 libs optional 
qt6-imageformats_6.6.2-1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=01wO
-END PGP SIGNATURE-



pgp8cbxz7IkXb.pgp
Description: PGP signature

Processed: Re: qtbase-opensource-src-gles: CVE-2024-25580

[Debian Bug Tracking System]

Processing control commands:

> found -1 5.12.2+dfsg-1
Bug #1064054 [src:qtbase-opensource-src-gles] qtbase-opensource-src-gles: 
CVE-2024-25580
Marked as found in versions qtbase-opensource-src-gles/5.12.2+dfsg-1.
> tags -1 patch
Bug #1064054 [src:qtbase-opensource-src-gles] qtbase-opensource-src-gles: 
CVE-2024-25580
Added tag(s) patch.

-- 
1064054: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064054
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#1064054: qtbase-opensource-src-gles: CVE-2024-25580

[James Addison]

Source: qtbase-opensource-src-gles
Followup-For: Bug #1064054
Control: found -1 5.12.2+dfsg-1
Control: tags -1 patch
diff --git a/src/gui/util/qktxhandler.cpp b/src/gui/util/qktxhandler.cpp
index 0d98e97453..6a79e55109 100644
--- a/src/gui/util/qktxhandler.cpp
+++ b/src/gui/util/qktxhandler.cpp
@@ -73,7 +73,7 @@ struct KTXHeader {
 quint32 bytesOfKeyValueData;
 };
 
-static const quint32 headerSize = sizeof(KTXHeader);
+static constexpr quint32 qktxh_headerSize = sizeof(KTXHeader);
 
 // Currently unused, declared for future reference
 struct KTXKeyValuePairItem {
@@ -103,11 +103,36 @@ struct KTXMipmapLevel {
 */
 };
 
-bool QKtxHandler::canRead(const QByteArray &suffix, const QByteArray &block)
+static bool qAddOverflow(quint32 v1, quint32 v2, quint32 *r) {
+// unsigned additions are well-defined
+*r = v1 + v2;
+return v1 > quint32(v1 + v2);
+}
+
+// Returns the nearest multiple of 4 greater than or equal to 'value'
+static bool nearestMultipleOf4(quint32 value, quint32 *result)
+{
+constexpr quint32 rounding = 4;
+*result = 0;
+if (qAddOverflow(value, rounding - 1, result))
+return true;
+*result &= ~(rounding - 1);
+return false;
+}
+
+// Returns a slice with prechecked bounds
+static QByteArray safeSlice(const QByteArray& array, quint32 start, quint32 
length)
 {
-Q_UNUSED(suffix)
+quint32 end = 0;
+if (qAddOverflow(start, length, &end) || end > quint32(array.length()))
+return {};
+return QByteArray(array.data() + start, length);
+}
 
-return (qstrncmp(block.constData(), ktxIdentifier, KTX_IDENTIFIER_LENGTH) 
== 0);
+bool QKtxHandler::canRead(const QByteArray &suffix, const QByteArray &block)
+{
+Q_UNUSED(suffix);
+return block.startsWith(QByteArray::fromRawData(ktxIdentifier, 
KTX_IDENTIFIER_LENGTH));
 }
 
 QTextureFileData QKtxHandler::read()
@@ -115,42 +140,97 @@ QTextureFileData QKtxHandler::read()
 if (!device())
 return QTextureFileData();
 
-QByteArray buf = device()->readAll();
-const quint32 dataSize = quint32(buf.size());
-if (dataSize < headerSize || !canRead(QByteArray(), buf)) {
-qCDebug(lcQtGuiTextureIO, "Invalid KTX file %s", 
logName().constData());
+const QByteArray buf = device()->readAll();
+if (size_t(buf.size()) > std::numeric_limits::max()) {
+qWarning(lcQtGuiTextureIO, "Too big KTX file %s", 
logName().constData());
+return QTextureFileData();
+}
+
+if (!canRead(QByteArray(), buf)) {
+qWarning(lcQtGuiTextureIO, "Invalid KTX file %s", 
logName().constData());
+return QTextureFileData();
+}
+
+if (buf.size() < qsizetype(qktxh_headerSize)) {
+qWarning(lcQtGuiTextureIO, "Invalid KTX header size in %s", 
logName().constData());
 return QTextureFileData();
 }
 
-const KTXHeader *header = reinterpret_cast(buf.constData());
-if (!checkHeader(*header)) {
-qCDebug(lcQtGuiTextureIO, "Unsupported KTX file format in %s", 
logName().constData());
+KTXHeader header;
+memcpy(&header, buf.data(), qktxh_headerSize);
+if (!checkHeader(header)) {
+qWarning(lcQtGuiTextureIO, "Unsupported KTX file format in %s", 
logName().constData());
 return QTextureFileData();
 }
 
 QTextureFileData texData;
 texData.setData(buf);
 
-texData.setSize(QSize(decode(header->pixelWidth), 
decode(header->pixelHeight)));
-texData.setGLFormat(decode(header->glFormat));
-texData.setGLInternalFormat(decode(header->glInternalFormat));
-texData.setGLBaseInternalFormat(decode(header->glBaseInternalFormat));
-
-texData.setNumLevels(decode(header->numberOfMipmapLevels));
-quint32 offset = headerSize + decode(header->bytesOfKeyValueData);
-const int maxLevels = qMin(texData.numLevels(), 32);   // Cap 
iterations in case of corrupt file.
-for (int i = 0; i < maxLevels; i++) {
-if (offset + sizeof(KTXMipmapLevel) > dataSize)// 
Corrupt file; avoid oob read
-break;
-const KTXMipmapLevel *level = reinterpret_cast(buf.constData() + offset);
-quint32 levelLen = decode(level->imageSize);
-texData.setDataOffset(offset + sizeof(KTXMipmapLevel::imageSize), i);
-texData.setDataLength(levelLen, i);
-offset += sizeof(KTXMipmapLevel::imageSize) + levelLen + (3 - 
((levelLen + 3) % 4));
+texData.setSize(QSize(decode(header.pixelWidth), 
decode(header.pixelHeight)));
+texData.setGLFormat(decode(header.glFormat));
+texData.setGLInternalFormat(decode(header.glInternalFormat));
+texData.setGLBaseInternalFormat(decode(header.glBaseInternalFormat));
+
+texData.setNumLevels(decode(header.numberOfMipmapLevels));
+
+const quint32 bytesOfKeyValueData = decode(header.bytesOfKeyValueData);
+quint32 headerKeyValueSize;
+if (qAddOverflow(qktxh_headerSize, bytesOfKeyValueData, 
&headerKeyValueSize)) {
+qWarning(lcQtGuiTextureIO, "Overflow in size of key valu

Processed: Re: qtbase-opensource-src: CVE-2024-25580

[Debian Bug Tracking System]

Processing control commands:

> found -1
Bug #1064053 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Bug #1064056 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Ignoring request to alter fixed versions of bug #1064053 to the same values 
previously set
Ignoring request to alter fixed versions of bug #1064056 to the same values 
previously set
> found -1 5.12.2+dfsg-1
Bug #1064053 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Bug #1064056 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Marked as found in versions qtbase-opensource-src/5.12.2+dfsg-1.
Marked as found in versions qtbase-opensource-src/5.12.2+dfsg-1.

-- 
1064053: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064053
1064056: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064056
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#1064053: qtbase-opensource-src: CVE-2024-25580

[James Addison]

Source: qtbase-opensource-src
Followup-For: Bug #1064053
Control: found -1
Control: found -1 5.12.2+dfsg-1

Replying to set the earliest version affected from the advisory blogpost[1],
and to (re)attach the patch from the duplicate bugreport.

[1]  
https://www.qt.io/blog/security-advisory-potential-buffer-overflow-when-reading-ktx-images
diff --git a/src/gui/util/qktxhandler.cpp b/src/gui/util/qktxhandler.cpp
index 0d98e97453..6a79e55109 100644
--- a/src/gui/util/qktxhandler.cpp
+++ b/src/gui/util/qktxhandler.cpp
@@ -73,7 +73,7 @@ struct KTXHeader {
 quint32 bytesOfKeyValueData;
 };
 
-static const quint32 headerSize = sizeof(KTXHeader);
+static constexpr quint32 qktxh_headerSize = sizeof(KTXHeader);
 
 // Currently unused, declared for future reference
 struct KTXKeyValuePairItem {
@@ -103,11 +103,36 @@ struct KTXMipmapLevel {
 */
 };
 
-bool QKtxHandler::canRead(const QByteArray &suffix, const QByteArray &block)
+static bool qAddOverflow(quint32 v1, quint32 v2, quint32 *r) {
+// unsigned additions are well-defined
+*r = v1 + v2;
+return v1 > quint32(v1 + v2);
+}
+
+// Returns the nearest multiple of 4 greater than or equal to 'value'
+static bool nearestMultipleOf4(quint32 value, quint32 *result)
+{
+constexpr quint32 rounding = 4;
+*result = 0;
+if (qAddOverflow(value, rounding - 1, result))
+return true;
+*result &= ~(rounding - 1);
+return false;
+}
+
+// Returns a slice with prechecked bounds
+static QByteArray safeSlice(const QByteArray& array, quint32 start, quint32 
length)
 {
-Q_UNUSED(suffix)
+quint32 end = 0;
+if (qAddOverflow(start, length, &end) || end > quint32(array.length()))
+return {};
+return QByteArray(array.data() + start, length);
+}
 
-return (qstrncmp(block.constData(), ktxIdentifier, KTX_IDENTIFIER_LENGTH) 
== 0);
+bool QKtxHandler::canRead(const QByteArray &suffix, const QByteArray &block)
+{
+Q_UNUSED(suffix);
+return block.startsWith(QByteArray::fromRawData(ktxIdentifier, 
KTX_IDENTIFIER_LENGTH));
 }
 
 QTextureFileData QKtxHandler::read()
@@ -115,42 +140,97 @@ QTextureFileData QKtxHandler::read()
 if (!device())
 return QTextureFileData();
 
-QByteArray buf = device()->readAll();
-const quint32 dataSize = quint32(buf.size());
-if (dataSize < headerSize || !canRead(QByteArray(), buf)) {
-qCDebug(lcQtGuiTextureIO, "Invalid KTX file %s", 
logName().constData());
+const QByteArray buf = device()->readAll();
+if (size_t(buf.size()) > std::numeric_limits::max()) {
+qWarning(lcQtGuiTextureIO, "Too big KTX file %s", 
logName().constData());
+return QTextureFileData();
+}
+
+if (!canRead(QByteArray(), buf)) {
+qWarning(lcQtGuiTextureIO, "Invalid KTX file %s", 
logName().constData());
+return QTextureFileData();
+}
+
+if (buf.size() < qsizetype(qktxh_headerSize)) {
+qWarning(lcQtGuiTextureIO, "Invalid KTX header size in %s", 
logName().constData());
 return QTextureFileData();
 }
 
-const KTXHeader *header = reinterpret_cast(buf.constData());
-if (!checkHeader(*header)) {
-qCDebug(lcQtGuiTextureIO, "Unsupported KTX file format in %s", 
logName().constData());
+KTXHeader header;
+memcpy(&header, buf.data(), qktxh_headerSize);
+if (!checkHeader(header)) {
+qWarning(lcQtGuiTextureIO, "Unsupported KTX file format in %s", 
logName().constData());
 return QTextureFileData();
 }
 
 QTextureFileData texData;
 texData.setData(buf);
 
-texData.setSize(QSize(decode(header->pixelWidth), 
decode(header->pixelHeight)));
-texData.setGLFormat(decode(header->glFormat));
-texData.setGLInternalFormat(decode(header->glInternalFormat));
-texData.setGLBaseInternalFormat(decode(header->glBaseInternalFormat));
-
-texData.setNumLevels(decode(header->numberOfMipmapLevels));
-quint32 offset = headerSize + decode(header->bytesOfKeyValueData);
-const int maxLevels = qMin(texData.numLevels(), 32);   // Cap 
iterations in case of corrupt file.
-for (int i = 0; i < maxLevels; i++) {
-if (offset + sizeof(KTXMipmapLevel) > dataSize)// 
Corrupt file; avoid oob read
-break;
-const KTXMipmapLevel *level = reinterpret_cast(buf.constData() + offset);
-quint32 levelLen = decode(level->imageSize);
-texData.setDataOffset(offset + sizeof(KTXMipmapLevel::imageSize), i);
-texData.setDataLength(levelLen, i);
-offset += sizeof(KTXMipmapLevel::imageSize) + levelLen + (3 - 
((levelLen + 3) % 4));
+texData.setSize(QSize(decode(header.pixelWidth), 
decode(header.pixelHeight)));
+texData.setGLFormat(decode(header.glFormat));
+texData.setGLInternalFormat(decode(header.glInternalFormat));
+texData.setGLBaseInternalFormat(decode(header.glBaseInternalFormat));
+
+texData.setNumLevels(decode(header.numberOfMipmapLevels));
+
+const quint32 bytesOfKeyValueDat

Processed: Re: qt6-base: CVE-2024-25580

[Debian Bug Tracking System]

Processing control commands:

> fixed -1 6.6.2+dfsg-1
Bug #1064052 [src:qt6-base] qt6-base: CVE-2024-25580
Marked as fixed in versions qt6-base/6.6.2+dfsg-1.

-- 
1064052: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064052
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#1064052: qt6-base: CVE-2024-25580

[James Addison]

Followup-For: Bug #1064052
Control: fixed -1 6.6.2+dfsg-1

Bug#1064063: plasma-workspace: CVE-2024-1433

[Moritz Mühlenhoff]

Source: plasma-workspace
X-Debbugs-CC: t...@security.debian.org
Severity: important
Tags: security

Hi,

The following vulnerability was published for plasma-workspace.

CVE-2024-1433[0]:
| A vulnerability, which was classified as problematic, was found in
| KDE Plasma Workspace up to 5.93.0. This affects the function
| EventPluginsManager::enabledPlugins of the file
| components/calendar/eventpluginsmanager.cpp of the component Theme
| File Handler. The manipulation of the argument pluginId leads to
| path traversal. It is possible to initiate the attack remotely. The
| complexity of an attack is rather high. The exploitability is told
| to be difficult. The patch is named
| 6cdf42916369ebf4ad5bd876c4dfa0170d7b2f01. It is recommended to apply
| a patch to fix this issue. The associated identifier of this
| vulnerability is VDB-253407. NOTE: This requires write access to
| user's home or the installation of third party global themes.

https://github.com/KDE/plasma-workspace/commit/6cdf42916369ebf4ad5bd876c4dfa0170d7b2f01


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2024-1433
https://www.cve.org/CVERecord?id=CVE-2024-1433

Please adjust the affected versions in the BTS as needed.

Processed: Re: qtbase-opensource-src: CVE-2024-25580

[Debian Bug Tracking System]

Processing control commands:

> forcemerge 1064053 -1
Bug #1064053 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Bug #1064053 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Marked as found in versions qtbase-opensource-src/5.15.10+dfsg-6.
Added tag(s) patch.
Bug #1064056 [src:qtbase-opensource-src] qtbase-opensource-src: CVE-2024-25580
Severity set to 'important' from 'normal'
Merged 1064053 1064056

-- 
1064053: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064053
1064056: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1064056
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#1064056: qtbase-opensource-src: CVE-2024-25580

[James Addison]

Source: qtbase-opensource-src
Followup-For: Bug #1064056
Control: forcemerge 1064053 -1 

Duplicate of #1064053; force merging this bugreport into that one.

Bug#1064056: qtbase-opensource-src: CVE-2024-25580

[James Addison]

Source: qtbase-opensource-src
Version: 5.15.10+dfsg-6
Severity: normal
Tags: patch security

Dear Maintainer,

Security advisory CVE-2024-25580, a buffer overflow affecting KTX image
handling in QT, has been announced[1], and the announcement includes patches
for various versions of QT including the v5.15 branch.

I've confirmed that the patch applies cleanly to qtbase-opensource-src versions
5.15.8+dfsg-11 (bookworm / stable) and 5.15.10+dfsg-6 (trixie / testing), and
have successfully compiled the trixie package.

Please find attached the v5.15 patch from upstream.
( sha256sum 7cc9bf74f696de8ec5386bb80ce7a2fed5aa3870ac0e2c7db4628621c5c1a731 )

Regards,
James

[1] - https://lists.qt-project.org/pipermail/announce/2024-February/000472.html
diff --git a/src/gui/util/qktxhandler.cpp b/src/gui/util/qktxhandler.cpp
index 0d98e97453..6a79e55109 100644
--- a/src/gui/util/qktxhandler.cpp
+++ b/src/gui/util/qktxhandler.cpp
@@ -73,7 +73,7 @@ struct KTXHeader {
 quint32 bytesOfKeyValueData;
 };
 
-static const quint32 headerSize = sizeof(KTXHeader);
+static constexpr quint32 qktxh_headerSize = sizeof(KTXHeader);
 
 // Currently unused, declared for future reference
 struct KTXKeyValuePairItem {
@@ -103,11 +103,36 @@ struct KTXMipmapLevel {
 */
 };
 
-bool QKtxHandler::canRead(const QByteArray &suffix, const QByteArray &block)
+static bool qAddOverflow(quint32 v1, quint32 v2, quint32 *r) {
+// unsigned additions are well-defined
+*r = v1 + v2;
+return v1 > quint32(v1 + v2);
+}
+
+// Returns the nearest multiple of 4 greater than or equal to 'value'
+static bool nearestMultipleOf4(quint32 value, quint32 *result)
+{
+constexpr quint32 rounding = 4;
+*result = 0;
+if (qAddOverflow(value, rounding - 1, result))
+return true;
+*result &= ~(rounding - 1);
+return false;
+}
+
+// Returns a slice with prechecked bounds
+static QByteArray safeSlice(const QByteArray& array, quint32 start, quint32 
length)
 {
-Q_UNUSED(suffix)
+quint32 end = 0;
+if (qAddOverflow(start, length, &end) || end > quint32(array.length()))
+return {};
+return QByteArray(array.data() + start, length);
+}
 
-return (qstrncmp(block.constData(), ktxIdentifier, KTX_IDENTIFIER_LENGTH) 
== 0);
+bool QKtxHandler::canRead(const QByteArray &suffix, const QByteArray &block)
+{
+Q_UNUSED(suffix);
+return block.startsWith(QByteArray::fromRawData(ktxIdentifier, 
KTX_IDENTIFIER_LENGTH));
 }
 
 QTextureFileData QKtxHandler::read()
@@ -115,42 +140,97 @@ QTextureFileData QKtxHandler::read()
 if (!device())
 return QTextureFileData();
 
-QByteArray buf = device()->readAll();
-const quint32 dataSize = quint32(buf.size());
-if (dataSize < headerSize || !canRead(QByteArray(), buf)) {
-qCDebug(lcQtGuiTextureIO, "Invalid KTX file %s", 
logName().constData());
+const QByteArray buf = device()->readAll();
+if (size_t(buf.size()) > std::numeric_limits::max()) {
+qWarning(lcQtGuiTextureIO, "Too big KTX file %s", 
logName().constData());
+return QTextureFileData();
+}
+
+if (!canRead(QByteArray(), buf)) {
+qWarning(lcQtGuiTextureIO, "Invalid KTX file %s", 
logName().constData());
+return QTextureFileData();
+}
+
+if (buf.size() < qsizetype(qktxh_headerSize)) {
+qWarning(lcQtGuiTextureIO, "Invalid KTX header size in %s", 
logName().constData());
 return QTextureFileData();
 }
 
-const KTXHeader *header = reinterpret_cast(buf.constData());
-if (!checkHeader(*header)) {
-qCDebug(lcQtGuiTextureIO, "Unsupported KTX file format in %s", 
logName().constData());
+KTXHeader header;
+memcpy(&header, buf.data(), qktxh_headerSize);
+if (!checkHeader(header)) {
+qWarning(lcQtGuiTextureIO, "Unsupported KTX file format in %s", 
logName().constData());
 return QTextureFileData();
 }
 
 QTextureFileData texData;
 texData.setData(buf);
 
-texData.setSize(QSize(decode(header->pixelWidth), 
decode(header->pixelHeight)));
-texData.setGLFormat(decode(header->glFormat));
-texData.setGLInternalFormat(decode(header->glInternalFormat));
-texData.setGLBaseInternalFormat(decode(header->glBaseInternalFormat));
-
-texData.setNumLevels(decode(header->numberOfMipmapLevels));
-quint32 offset = headerSize + decode(header->bytesOfKeyValueData);
-const int maxLevels = qMin(texData.numLevels(), 32);   // Cap 
iterations in case of corrupt file.
-for (int i = 0; i < maxLevels; i++) {
-if (offset + sizeof(KTXMipmapLevel) > dataSize)// 
Corrupt file; avoid oob read
-break;
-const KTXMipmapLevel *level = reinterpret_cast(buf.constData() + offset);
-quint32 levelLen = decode(level->imageSize);
-texData.setDataOffset(offset + sizeof(KTXMipmapLevel::imageSize), i);
-texData.setDataLength(levelLen, i);
-offset += sizeof(KTXMipmapLevel::imageSize) + levelLen + (3 

Bug#1064054: qtbase-opensource-src-gles: CVE-2024-25580

[Moritz Mühlenhoff]

Source: qtbase-opensource-src-gles
X-Debbugs-CC: t...@security.debian.org
Severity: important
Tags: security

Hi,

The following vulnerability was published for qtbase-opensource-src-gles.

CVE-2024-25580[0]:
https://bugzilla.redhat.com/show_bug.cgi?id=2264423
https://download.qt.io/official_releases/qt/5.15/CVE-2024-25580-qtbase-5.15.diff


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2024-25580
https://www.cve.org/CVERecord?id=CVE-2024-25580

Please adjust the affected versions in the BTS as needed.

Bug#1064053: qtbase-opensource-src: CVE-2024-25580

[Moritz Mühlenhoff]

Source: qtbase-opensource-src
X-Debbugs-CC: t...@security.debian.org
Severity: important
Tags: security

Hi,

The following vulnerability was published for qtbase-opensource-src.

CVE-2024-25580[0]:
https://bugzilla.redhat.com/show_bug.cgi?id=2264423
https://download.qt.io/official_releases/qt/5.15/CVE-2024-25580-qtbase-5.15.diff


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2024-25580
https://www.cve.org/CVERecord?id=CVE-2024-25580

Please adjust the affected versions in the BTS as needed.

Bug#1064052: qt6-base: CVE-2024-25580

[Moritz Mühlenhoff]

Source: qt6-base
X-Debbugs-CC: t...@security.debian.org
Severity: important
Tags: security

Hi,

The following vulnerability was published for qt6-base.

CVE-2024-25580[0]:
https://bugzilla.redhat.com/show_bug.cgi?id=2264423
https://code.qt.io/cgit/qt/qtbase.git/commit/?id=28ecb523ce8490bff38b251b3df703c72e057519


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2024-25580
https://www.cve.org/CVERecord?id=CVE-2024-25580

Please adjust the affected versions in the BTS as needed.