-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 22 Jun 2026 10:38:07 +0200
Source: u-boot
Binary: u-boot-tools u-boot-tools-dbgsym
Architecture: mipsel
Version: 2023.01+dfsg-2+deb12u3
Distribution: bookworm-security
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-05) <buildd_mips64el-mipsel-osuosl-05@buildd.debian.org>
Changed-By: Andreas Henriksson <andreas@fatal.se>
Description:
 u-boot-tools - companion tools for Das U-Boot bootloader
Closes: 1056750 1081557 1136954
Changes:
 u-boot (2023.01+dfsg-2+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2024-42040: buffer overread vulnerability in the DHCP implementation.
     (Closes: #1081557)
   * CVE-2026-46728: mishandles use of unit addresses in a FIT.
     (Closes: #1136954)
   * Remove avr32 arch support removed in dpkg 1.22.0 (Closes: #1056750)
     - now also leads to dak rejecting uploads even for older suites
Checksums-Sha1:
 6a9af5cb8aaa70df7de1febce8ef6add3ce5ca1e 779208 u-boot-tools-dbgsym_2023.01+dfsg-2+deb12u3_mipsel.deb
 be480f4eac101e9c88fa80daa842635670d2133e 195036 u-boot-tools_2023.01+dfsg-2+deb12u3_mipsel.deb
 79942cb318c26fccb5cacf528ba7e443a080b4ad 7828 u-boot_2023.01+dfsg-2+deb12u3_mipsel-buildd.buildinfo
Checksums-Sha256:
 ee3e4cfb9b88f37ff947535acbf1273a841eeff2e16c6872c102b3cfff320b76 779208 u-boot-tools-dbgsym_2023.01+dfsg-2+deb12u3_mipsel.deb
 aca3c545c1dc0121ee196e6aaa96e984bdd4a497d61219e22b8b3261588b7a15 195036 u-boot-tools_2023.01+dfsg-2+deb12u3_mipsel.deb
 6c9e4fc634d0ebdc1b3c45ddd61d92574f897c9d271d4e229990357abd656645 7828 u-boot_2023.01+dfsg-2+deb12u3_mipsel-buildd.buildinfo
Files:
 5ec6b9d16fbc9f17913e555b7509eaa0 779208 debug optional u-boot-tools-dbgsym_2023.01+dfsg-2+deb12u3_mipsel.deb
 102cc40166f9a160c7cf83038ccc4a44 195036 admin optional u-boot-tools_2023.01+dfsg-2+deb12u3_mipsel.deb
 49698578112a48ae5e202cb65f5e4e0a 7828 admin optional u-boot_2023.01+dfsg-2+deb12u3_mipsel-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=CbXA
-----END PGP SIGNATURE-----