Accepted cups-filters 1.28.17-3+deb12u2 (source) into oldstable-proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted cups-filters 1.28.17-3+deb12u2 (source) into oldstable-proposed-updates
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Sun, 21 Dec 2025 20:34:34 +0000
Message-id: <[🔎] E1vXQ8Q-00Bqr8-37@fasolo.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 20 Nov 2025 10:45:05 +0100
Source: cups-filters
Architecture: source
Version: 1.28.17-3+deb12u2
Distribution: bookworm
Urgency: high
Maintainer: Debian Printing Team <debian-printing@lists.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Closes: 1120698 1120704
Changes:
 cups-filters (1.28.17-3+deb12u2) bookworm; urgency=high
 .
   * CVE-2025-64503
     fix an out of bounds write vulnerability when processing crafted
     PDF files containing a large 'Mediabox' value.
     (Closes: #1120698)
 .
   * CVE-2025-57812
     fix an out of bounds read/write vulnerability in the processing
     of TIFF image files.
     (Closes: #1120704)
 .
   * CVE-2025-64524
     fix infinite loop with crafted input raster file, that resuls
     into a heap buffer overflow
Checksums-Sha1:
 6b7e291208b74edb1c0cfe4834be5e50baacd4a3 3013 cups-filters_1.28.17-3+deb12u2.dsc
 916cc1ebc2533a745b8a04233700d559ab91ed87 1511993 cups-filters_1.28.17.orig.tar.gz
 846842a33aeb4eba978e3c1fb4603d18d372bee2 89380 cups-filters_1.28.17-3+deb12u2.debian.tar.xz
 c460eeb28dff3959325a56a881573e2fdff84ade 15077 cups-filters_1.28.17-3+deb12u2_amd64.buildinfo
Checksums-Sha256:
 60fd4a7520012927c3e2427275e88bce2dfbaa05845193cee25a1add99d43010 3013 cups-filters_1.28.17-3+deb12u2.dsc
 ade6e4327e7eba1646881aaa4ca82a0df5d44e3b3b16326a5d3f04e975ab595c 1511993 cups-filters_1.28.17.orig.tar.gz
 41c186ff7df6f575dd8b7ea23dbf62cb19983724fc39ea7440f6dca8339ac5dd 89380 cups-filters_1.28.17-3+deb12u2.debian.tar.xz
 507544251115206b8c2d19fd810697a3be75764f6bacba74ab28c734320092c9 15077 cups-filters_1.28.17-3+deb12u2_amd64.buildinfo
Files:
 ac04e78585e2326ba53e7d985a5e11b4 3013 net optional cups-filters_1.28.17-3+deb12u2.dsc
 389aa99780c9b5ac012fc4b2d29e5cba 1511993 net optional cups-filters_1.28.17.orig.tar.gz
 05a46bdfefafb53b60d3be5bf888b3e3 89380 net optional cups-filters_1.28.17-3+deb12u2.debian.tar.xz
 d42622f4fc7c90d97919384fc5a18224 15077 net optional cups-filters_1.28.17-3+deb12u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=VgSQ
-----END PGP SIGNATURE-----

Attachment: pgp7skba8J47Y.pgp
Description: PGP signature

Reply to:

Prev by Date: Accepted libnginx-mod-http-lua 1:0.10.23-1+deb12u1 (source) into oldstable-proposed-updates
Next by Date: Accepted modsecurity-apache 2.9.7-1+deb12u2 (source) into oldstable-proposed-updates
Previous by thread: Accepted libnginx-mod-http-lua 1:0.10.23-1+deb12u1 (source) into oldstable-proposed-updates
Next by thread: Accepted modsecurity-apache 2.9.7-1+deb12u2 (source) into oldstable-proposed-updates
Index(es):
- Date
- Thread