Accepted lhasa 0.3.1-1 (source amd64) into unstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 31 Mar 2016 21:01:32 +0100
Source: lhasa
Binary: lhasa liblhasa-dev liblhasa0
Architecture: source amd64
Version: 0.3.1-1
Distribution: unstable
Urgency: high
Maintainer: Jonathan Dowland <jmtd@debian.org>
Changed-By: Jonathan Dowland <jmtd@debian.org>
Description:
lhasa - lzh archive decompressor
liblhasa-dev - lzh decompression library - development files
liblhasa0 - lzh archive decompression library
Changes:
lhasa (0.3.1-1) unstable; urgency=high
.
* New upstream release:
.
* This release fixes an integer underflow vulnerability in the
code for doing LZH level 3 header decodes (TALOS-CAN-0095).
Thanks go to Marcin Noga and Regina Wilson of Cisco TALOS for
reporting this vulnerability.
Checksums-Sha1:
82b0e84412f46de161409d77b47966813d6c4cd5 1984 lhasa_0.3.1-1.dsc
cc2cad80855d4caf07077fa24d852fc2684de7ac 2015072 lhasa_0.3.1.orig.tar.xz
6ad6be6acac9dddbd147e6d0fb988ede92500a15 3552 lhasa_0.3.1-1.debian.tar.xz
23bd3f9984d3fe8a56c0dc0699954d3a0674b295 23994 lhasa-dbgsym_0.3.1-1_amd64.deb
349a531dd25d9b9d315b37280c658b138a48fe22 17588 lhasa_0.3.1-1_amd64.deb
4fa9642a000f46c43c8ba9c27076d698d51b1504 28500 liblhasa-dev_0.3.1-1_amd64.deb
6a16b88acb789dde147c7be8a7bb380e97316030 61766 liblhasa0-dbgsym_0.3.1-1_amd64.deb
d2930dd8de1e0bdb0c924b89745a57872d24793a 22226 liblhasa0_0.3.1-1_amd64.deb
Checksums-Sha256:
8737c4b025b982691cabade6acac9bb5ff682ccc7bdba8cfb3ba4169c3ca58d0 1984 lhasa_0.3.1-1.dsc
fe7b76fa4359e42c80cb11537f8769da2f5d6c479f41717394d9409d46aa983d 2015072 lhasa_0.3.1.orig.tar.xz
601079c8e39f1c4121cbda67c019a5c7cfaf6db48f4b5d7e466a6db35284af79 3552 lhasa_0.3.1-1.debian.tar.xz
e3b0612a388626b774009349eef60c6a89e1deabade0cbe3bf45b4d2e5d29b02 23994 lhasa-dbgsym_0.3.1-1_amd64.deb
1a2244bad9f2b5cdb5c991270a7928e94783243db9f7809afe5abf0d0eb0f67f 17588 lhasa_0.3.1-1_amd64.deb
583b6daf2469b310a0cae5534979ce24d6d4531efdf3ce194f29795f234675c7 28500 liblhasa-dev_0.3.1-1_amd64.deb
6d9abc7e1223aaee1edd3cc2a6c76265d05b5906b609dc37059c3271d3bd08c2 61766 liblhasa0-dbgsym_0.3.1-1_amd64.deb
f51ca784e38620af778323422096f1244296967991890fd3af0643d39accaa41 22226 liblhasa0_0.3.1-1_amd64.deb
Files:
ff83a8ffef71ed94ad5e6f5177bfca9d 1984 utils optional lhasa_0.3.1-1.dsc
0955c5d74ac925ea648a7fb733edc07c 2015072 utils optional lhasa_0.3.1.orig.tar.xz
bc02bab3b48b1e53e4280e9fd31fbbf6 3552 utils optional lhasa_0.3.1-1.debian.tar.xz
2b5ddd39e3988a28ffa16a457abb5258 23994 debug extra lhasa-dbgsym_0.3.1-1_amd64.deb
4074c75e6367ad01e1f0b4a09f0b8299 17588 utils optional lhasa_0.3.1-1_amd64.deb
b07cbb403233431689caa8f077252d79 28500 libdevel optional liblhasa-dev_0.3.1-1_amd64.deb
e6d90d688646ef70533972abb600450c 61766 debug extra liblhasa0-dbgsym_0.3.1-1_amd64.deb
2274b514b14e56134d95a63c0037b2be 22226 libs optional liblhasa0_0.3.1-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=NB4C
-----END PGP SIGNATURE-----
Reply to: