Accepted edk2 0~20181115.85588389-3+deb10u1 (source) into proposed-updates->stable-new, proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted edk2 0~20181115.85588389-3+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Sat, 25 Apr 2020 15:02:09 +0000
Message-id: <[🔎] E1jSMJl-0007vx-EU@fasolo.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 23 Apr 2020 13:33:06 -0600
Source: edk2
Architecture: source
Version: 0~20181115.85588389-3+deb10u1
Distribution: buster
Urgency: medium
Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
Changed-By: dann frazier <dannf@debian.org>
Closes: 952926 952935
Changes:
 edk2 (0~20181115.85588389-3+deb10u1) buster; urgency=medium
 .
   * Fix numeric truncation in S3BootScript[Save]*() API. (CVE-2019-14563)
   * Fix use-after-free in PcdHiiOsRuntimeSupport. (CVE-2019-14586)
   * Clear memory before free to avoid potential password leak.
     (CVE-2019-14558)
   * Fix double-unmap in SdMmcCreateTrb(). This did not impact any
     of the images built from this package. (CVE-2019-14587)
   * Fix memory leak in ArpOnFrameRcvdDpc(). (CVE-2019-14559)
   * Fix issue that could allow an efi image with a blacklisted hash in the
     dbx to be loaded. (CVE-2019-14575) (Closes: 952935)
   * Fix a memory leak in the ARP handler. (CVE-2019-14559) (Closes: #952926)
Checksums-Sha1:
 150dc0656c39a007e960ad6c9c2a83eeaa2e59b3 2370 edk2_0~20181115.85588389-3+deb10u1.dsc
 7e9ba917698f038494c060121fe2b1c12425a3ae 32708 edk2_0~20181115.85588389-3+deb10u1.debian.tar.xz
 6270ca5e1d741a1e1a5d2ddac97a03a9e7bd82bd 6458 edk2_0~20181115.85588389-3+deb10u1_source.buildinfo
Checksums-Sha256:
 cf3257cd8798568fda539d5a7268fabddc46989fa015747fcd8f92ca95ee3581 2370 edk2_0~20181115.85588389-3+deb10u1.dsc
 4933cb459bb91e3af7e8886eedbf0d0a4fd0c6d312c3f7155691d7138d23c184 32708 edk2_0~20181115.85588389-3+deb10u1.debian.tar.xz
 e3c2110960829bfa7cdf4fc09cb2fd470fb4aca8a26627303d383722e1861cef 6458 edk2_0~20181115.85588389-3+deb10u1_source.buildinfo
Files:
 6450f6ce2f0361a22858b4dc1729ffc7 2370 misc optional edk2_0~20181115.85588389-3+deb10u1.dsc
 06c0a8324dd766bb4b8b8e5d971f6df4 32708 misc optional edk2_0~20181115.85588389-3+deb10u1.debian.tar.xz
 39738f08c2b85a32e945aca4dae61d2c 6458 misc optional edk2_0~20181115.85588389-3+deb10u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=ftfW
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Accepted brltty 5.6-10+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
Next by Date: Accepted debian-edu-config 2.10.65+deb10u5 (source) into proposed-updates->stable-new, proposed-updates
Previous by thread: Accepted brltty 5.6-10+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
Next by thread: Accepted debian-edu-config 2.10.65+deb10u5 (source) into proposed-updates->stable-new, proposed-updates
Index(es):
- Date
- Thread