libsmb2 (6.2+dfsg-3) [PTS] [DDPO]

OK: VCS matches the version in the archive

Git: https://salsa.debian.org/pkg-security-team/libsmb2.git
JSON
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: debian/master
Path: debian/changelog
Repo size: 282624
Browser: https://salsa.debian.org/pkg-security-team/libsmb2
Last scan: 2025-10-18 15:03:16+00
Next scan: 2025-10-27 08:56:00+00
CI pipeline status: success

Debian changelog in Git:

libsmb2 (6.2+dfsg-3) unstable; urgency=medium

  * Import upstream patches to fix CVE-2025-57632 (Closes: #1116446)
    - When processing SMB2 chained PDUs (NextCommand), libsmb2
      repeatedly calls smb2_add_iovector() to append to a
      fixed-size iovec array without checking the upper bound
      of v->niov (SMB2_MAX_VECTORS=256)
  * d/control: Mark libsmb2-6 and libsmb2-dev as Multi-Arch: same
  * d/patches:
    - CVE-2025-57632-pt1.patch: New patch
    - CVE-2025-57632-pt2.patch: Backport and Update hunks' offsets
    - CVE-2025-57632-pt3.patch: Backport and Update hunks' offsets
    - CVE-2025-57632-pt4.patch: Backport and Change hunk to
      reflect new code indentation
  * d/watch: Update to version 5

 -- Matheus Polkorny <mpolkorny@gmail.com>  Sun, 28 Sep 2025 13:07:32 -0300

This branch is even with tag debian/6.2+dfsg-3