Accepted file 4.12-1sarge1 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 29 Mar 2007 20:28:00 +0200
Source: file
Binary: libmagic1 file libmagic-dev
Architecture: source i386
Version: 4.12-1sarge1
Distribution: stable-security
Urgency: high
Maintainer: Michael Piefel <piefel@debian.org>
Changed-By: Daniel Baumann <daniel@debian.org>
Description:
file - Determines file type using "magic" numbers
libmagic-dev - File type determination library (development)
libmagic1 - File type determination library using "magic" numbers
Closes: 415362 416678
Changes:
file (4.12-1sarge1) stable-security; urgency=high
.
* Applied patch from upstream to src/file.h, src/funcs.c and src/magic.c to
fix integer underflow in file_printf which can lead to to exploitable heap
overflow CVE-2007-1536 (Closes: #415362, #416678).
Files:
35369fd62fb18da83aaeb7c4f344dd4c 617 utils standard file_4.12-1sarge1.dsc
09488a9d62bc6627b48a8c93e12d72f8 414600 utils standard file_4.12.orig.tar.gz
280dd71f4e252f06075c39bfaa299c30 17938 utils standard file_4.12-1sarge1.diff.gz
5dc2a6e2ae0e369822375952d4f09661 28778 utils standard file_4.12-1sarge1_i386.deb
606140908844c8181f9e0a53c15374e4 234522 libs standard libmagic1_4.12-1sarge1_i386.deb
3526099e71273498e46541578303ca4c 45386 libdevel optional libmagic-dev_4.12-1sarge1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFGDAcl+C5cwEsrK54RAtivAKDPLEiDb1pZew90o3XW8r72P3dfGwCffFDc
bnvgJNlO9sB6bSszESgLClQ=
=iMYj
-----END PGP SIGNATURE-----
Accepted:
file_4.12-1sarge1.diff.gz
to pool/main/f/file/file_4.12-1sarge1.diff.gz
file_4.12-1sarge1.dsc
to pool/main/f/file/file_4.12-1sarge1.dsc
file_4.12-1sarge1_i386.deb
to pool/main/f/file/file_4.12-1sarge1_i386.deb
libmagic-dev_4.12-1sarge1_i386.deb
to pool/main/f/file/libmagic-dev_4.12-1sarge1_i386.deb
libmagic1_4.12-1sarge1_i386.deb
to pool/main/f/file/libmagic1_4.12-1sarge1_i386.deb
Reply to: