Version in base suite: 2.2.2-1.1 Version in overlay suite: 2.2.2-1.1+deb13u1 Base version: gsasl_2.2.2-1.1+deb13u1 Target version: gsasl_2.2.2-1.1+deb13u2 Base file: /srv/ftp-master.debian.org/ftp/pool/main/g/gsasl/gsasl_2.2.2-1.1+deb13u1.dsc Target file: /srv/ftp-master.debian.org/policy/pool/main/g/gsasl/gsasl_2.2.2-1.1+deb13u2.dsc changelog | 6 ++ patches/0001-NTLM-client-Avoid-use-of-unitialized-value-inside-li.patch | 27 ++++++++++ patches/series | 1 3 files changed, 34 insertions(+) dpkg-source: warning: cannot verify inline signature for /srv/release.debian.org/tmp/tmpviw3zb21/gsasl_2.2.2-1.1+deb13u1.dsc: no acceptable signature found dpkg-source: warning: cannot verify inline signature for /srv/release.debian.org/tmp/tmpviw3zb21/gsasl_2.2.2-1.1+deb13u2.dsc: no acceptable signature found diff -Nru gsasl-2.2.2/debian/changelog gsasl-2.2.2/debian/changelog --- gsasl-2.2.2/debian/changelog 2026-05-13 11:13:50.000000000 +0000 +++ gsasl-2.2.2/debian/changelog 2026-06-15 22:52:31.000000000 +0000 @@ -1,3 +1,9 @@ +gsasl (2.2.2-1.1+deb13u2) trixie-security; urgency=medium + + * NTLM client: Avoid use-of-unitialized-value inside libntlm + + -- Simon Josefsson Tue, 16 Jun 2026 00:52:31 +0200 + gsasl (2.2.2-1.1+deb13u1) trixie-security; urgency=medium * Fix NULL pointer dereference in DIGEST-MD5 parser diff -Nru gsasl-2.2.2/debian/patches/0001-NTLM-client-Avoid-use-of-unitialized-value-inside-li.patch gsasl-2.2.2/debian/patches/0001-NTLM-client-Avoid-use-of-unitialized-value-inside-li.patch --- gsasl-2.2.2/debian/patches/0001-NTLM-client-Avoid-use-of-unitialized-value-inside-li.patch 1970-01-01 00:00:00.000000000 +0000 +++ gsasl-2.2.2/debian/patches/0001-NTLM-client-Avoid-use-of-unitialized-value-inside-li.patch 2026-06-15 22:51:04.000000000 +0000 @@ -0,0 +1,27 @@ +From 5761f4c7066c079356ad610d2c98691d616212eb Mon Sep 17 00:00:00 2001 +From: Simon Josefsson +Date: Mon, 15 Jun 2026 22:28:47 +0200 +Subject: [PATCH] NTLM client: Avoid use-of-unitialized-value inside libntlm + +Reported by zhangph12138@163.com in: +https://lists.gnu.org/archive/html/help-gsasl/2026-06/msg00000.html +--- + lib/ntlm/ntlm.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/lib/ntlm/ntlm.c b/lib/ntlm/ntlm.c +index 7fa55026..f3bba355 100644 +--- a/lib/ntlm/ntlm.c ++++ b/lib/ntlm/ntlm.c +@@ -107,7 +107,7 @@ _gsasl_ntlm_client_step (Gsasl_session *sctx, + if (input_len > sizeof (*challenge)) + return GSASL_MECHANISM_PARSE_ERROR; + +- challenge = malloc (sizeof (*challenge)); ++ challenge = calloc (1, sizeof (*challenge)); + if (!challenge) + return GSASL_MALLOC_ERROR; + +-- +2.54.0 + diff -Nru gsasl-2.2.2/debian/patches/series gsasl-2.2.2/debian/patches/series --- gsasl-2.2.2/debian/patches/series 2026-05-13 11:13:38.000000000 +0000 +++ gsasl-2.2.2/debian/patches/series 2026-06-15 22:51:16.000000000 +0000 @@ -1,2 +1,3 @@ 0001-tests-update-dovecot-config-for-2.4.x.patch 0001-Fix-NULL-pointer-dereference-in-DIGEST-MD5-parser.patch +0001-NTLM-client-Avoid-use-of-unitialized-value-inside-li.patch