Accepted squashfs-tools 1:4.4-2+deb11u1 (source amd64) into proposed-updates->stable-new, proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 29 Aug 2021 19:03:02 +0200
Source: squashfs-tools
Binary: squashfs-tools squashfs-tools-dbgsym
Architecture: source amd64
Version: 1:4.4-2+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
squashfs-tools - Tool to create and append to squashfs filesystems
Changes:
squashfs-tools (1:4.4-2+deb11u1) bullseye-security; urgency=high
.
* Non-maintainer upload by the LTS Team.
* CVE-2021-40153
unsquashfs unvalidated filepaths allow writing outside of destination.
Checksums-Sha1:
f9bd7932bf14f4ee7984533862f0eae0c7b326de 2076 squashfs-tools_4.4-2+deb11u1.dsc
883eb8bfae3aaef619e6d3b7ae51f5aa83097cfd 241842 squashfs-tools_4.4.orig.tar.gz
a9082f9611e7167a9ad0a2f36ce2c706ab845499 14036 squashfs-tools_4.4-2+deb11u1.debian.tar.xz
4f88aa6889dc4ed32fde16656ac12f7ce79f228f 386288 squashfs-tools-dbgsym_4.4-2+deb11u1_amd64.deb
7a6b4a2f48c4e584a3fef24407a64460d54301af 6370 squashfs-tools_4.4-2+deb11u1_amd64.buildinfo
ef33e0818bc8d81e6138bf7bbc4a7d89ad20a2ca 134984 squashfs-tools_4.4-2+deb11u1_amd64.deb
Checksums-Sha256:
c0ba2b5921a2eeeb111fba4a890b413c5c5db7e5c30d959e12845b4c872d000c 2076 squashfs-tools_4.4-2+deb11u1.dsc
a7fa4845e9908523c38d4acf92f8a41fdfcd19def41bd5090d7ad767a6dc75c3 241842 squashfs-tools_4.4.orig.tar.gz
0c5bf7b5947814471fb774270811c9e11b3234b86f56e1826281d06a22ae1c96 14036 squashfs-tools_4.4-2+deb11u1.debian.tar.xz
90917302518d18ac4b0ac49af73f78c703bf25b59b990da19677cff14bc447c8 386288 squashfs-tools-dbgsym_4.4-2+deb11u1_amd64.deb
94903cc6f427329054723aa2093f9693471b5bb6a4c9f88d3368081978fdd14f 6370 squashfs-tools_4.4-2+deb11u1_amd64.buildinfo
f23954918d82c87ee23116ded2125fb797e28081da834f521dafc69b4dab84bd 134984 squashfs-tools_4.4-2+deb11u1_amd64.deb
Files:
6ee87daa6375232dba91643cf70b04b3 2076 kernel optional squashfs-tools_4.4-2+deb11u1.dsc
1d5c4e12fe3034f2347d0db26cfe1c0f 241842 kernel optional squashfs-tools_4.4.orig.tar.gz
cdc3e3b2046fefc53ca8315207c02771 14036 kernel optional squashfs-tools_4.4-2+deb11u1.debian.tar.xz
84decc847a9b10f44122d752e90e4235 386288 debug optional squashfs-tools-dbgsym_4.4-2+deb11u1_amd64.deb
9b19dea8e788ee8a51a002d1c54b542e 6370 kernel optional squashfs-tools_4.4-2+deb11u1_amd64.buildinfo
12dae4d834833c666fdf6725aa7616a8 134984 kernel optional squashfs-tools_4.4-2+deb11u1_amd64.deb
-----BEGIN PGP SIGNATURE-----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=F6Nq
-----END PGP SIGNATURE-----
Reply to: