Version in base suite: 0.17.3-4+deb11u1

Base version: aide_0.17.3-4+deb11u1
Target version: aide_0.17.3-4+deb11u2
Base file: /srv/ftp-master.debian.org/ftp/pool/main/a/aide/aide_0.17.3-4+deb11u1.dsc
Target file: /srv/ftp-master.debian.org/policy/pool/main/a/aide/aide_0.17.3-4+deb11u2.dsc

 changelog                  |    6 ++++++
 patches/debian-bug-1037436 |   25 +++++++++++++++++++++++++
 patches/series             |    1 +
 3 files changed, 32 insertions(+)

diff -Nru aide-0.17.3/debian/changelog aide-0.17.3/debian/changelog
--- aide-0.17.3/debian/changelog	2022-01-16 12:36:56.000000000 +0000
+++ aide-0.17.3/debian/changelog	2023-06-21 16:28:37.000000000 +0000
@@ -1,3 +1,9 @@
+aide (0.17.3-4+deb11u2) bullseye; urgency=medium
+
+  * Fix handling of extended attributes on symlinks. (Closes: #1037436)
+
+ -- Marc Haber <mh+debian-packages@zugschlus.de>  Wed, 21 Jun 2023 18:28:37 +0200
+
 aide (0.17.3-4+deb11u1) bullseye-security; urgency=high
 
   * Apply upstream patch to fix heap-based buffer overflow in base64 functions
diff -Nru aide-0.17.3/debian/patches/debian-bug-1037436 aide-0.17.3/debian/patches/debian-bug-1037436
--- aide-0.17.3/debian/patches/debian-bug-1037436	1970-01-01 00:00:00.000000000 +0000
+++ aide-0.17.3/debian/patches/debian-bug-1037436	2023-06-21 16:28:37.000000000 +0000
@@ -0,0 +1,25 @@
+Description: Fix handling of extended attributes on symlinks
+Author: Hannes von Haugwitz <hannes@vonhaugwitz.com>
+Origin: 04b34dd46292dedf830ef2366a86666869a31488
+Date: Mon Jun 12 22:20:50 2023 +0200
+Forwarded: not-needed
+--- a/src/do_md.c
++++ b/src/do_md.c
+@@ -565,7 +565,7 @@ void xattrs2line(db_line *line) {
+                     strncmp(attr, "trusted.", strlen("trusted.")))
+                 goto next_attr; /* only store normal xattrs, and SELinux */
+ 
+-            while (((aret = getxattr(line->fullpath, attr, val, asz)) ==
++            while (((aret = lgetxattr(line->fullpath, attr, val, asz)) ==
+                         -1) && (errno == ERANGE)) {
+                 asz <<= 1;
+                 val = realloc (val, asz);
+@@ -574,7 +574,7 @@ void xattrs2line(db_line *line) {
+             if (aret != -1)
+                 xattr_add(xattrs, attr, val, aret);
+             else if (errno != ENOATTR)
+-                log_msg(LOG_LEVEL_WARNING, "getxattr failed for %s:%s", line->fullpath, strerror(errno));
++                log_msg(LOG_LEVEL_WARNING, "lgetxattr failed for %s:%s", line->fullpath, strerror(errno));
+ 
+ next_attr:
+             attr += len + 1;
diff -Nru aide-0.17.3/debian/patches/series aide-0.17.3/debian/patches/series
--- aide-0.17.3/debian/patches/series	2022-01-16 12:09:51.000000000 +0000
+++ aide-0.17.3/debian/patches/series	2023-06-21 16:28:37.000000000 +0000
@@ -1 +1,2 @@
 20-aide-0.17-cve-2021-45417.patch
+debian-bug-1037436