Accepted htmldoc 1.8.27-8+deb9u2 (source all amd64) into oldoldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 25 Feb 2022 22:03:02 +0100
Source: htmldoc
Binary: htmldoc htmldoc-common
Architecture: source all amd64
Version: 1.8.27-8+deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: Jeff Licquia <licquia@debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
htmldoc - HTML processor that generates indexed HTML, PS, and PDF
htmldoc-common - Common arch-independent files for htmldoc
Changes:
htmldoc (1.8.27-8+deb9u2) stretch-security; urgency=high
.
* Non-maintainer upload by the LTS Team.
* CVE-2022-0534
A crafted GIF file could lead to a stack out-of-bounds read,
which could result in a crash (segmentation fault).
* CVE-2021-43579
Converting an HTML document, which links to a crafted BMP file,
could lead to a stack-based buffer overflow, which could result
in remote code execution.
* CVE-2021-40985
A crafted BMP image could lead to a buffer overflow, which could
cause a denial of service.
Checksums-Sha1:
7aefd22570eec7c8a107119b372ddb02ecdeb82f 2135 htmldoc_1.8.27-8+deb9u2.dsc
1dc2603983d7ad7024cfbeab7a0c7fab2230cf8f 4462252 htmldoc_1.8.27.orig.tar.gz
b6203d2c1587d5e82aa275f670f9b8aad0d23865 13340 htmldoc_1.8.27-8+deb9u2.debian.tar.xz
67f53cf02ade28d0a35359f24be4aee43c58bb01 4843392 htmldoc-common_1.8.27-8+deb9u2_all.deb
92085afbaac6dda8e74f86fd61afe8da2b7c58da 387200 htmldoc-dbgsym_1.8.27-8+deb9u2_amd64.deb
90d8a1085702fddac03d07b7f76c6323505898ee 8072 htmldoc_1.8.27-8+deb9u2_amd64.buildinfo
b7e2907c918eecc439979686c82f72e1603ce8bb 207480 htmldoc_1.8.27-8+deb9u2_amd64.deb
Checksums-Sha256:
f539593fefaa79171824a71b7d61f31e6ffcab95a6bf078d3d2a40eeadd9af5b 2135 htmldoc_1.8.27-8+deb9u2.dsc
64f6d9f40f00f9cc68df6508123e88ed30fef924881fd28dca45358ecd79d320 4462252 htmldoc_1.8.27.orig.tar.gz
f0404f333614d5a658f7947d844cdbcab7b2f99d75c3747a087953d2409c4064 13340 htmldoc_1.8.27-8+deb9u2.debian.tar.xz
47d22589f30e95d5c480b37c91b69e0cfc704f915490f3abfda3aca5f3e1965c 4843392 htmldoc-common_1.8.27-8+deb9u2_all.deb
29d94048e27cbaa04b0eecdbb4388f19bb42e55589793019cb57773d7668a382 387200 htmldoc-dbgsym_1.8.27-8+deb9u2_amd64.deb
541b3cd41844ffcda0746af03b5a53017d9188135452d490701b8dae16ebf428 8072 htmldoc_1.8.27-8+deb9u2_amd64.buildinfo
b0e705293f8e6858a71c48c7e507433998a7b57fc0f68e8982689135a551ea82 207480 htmldoc_1.8.27-8+deb9u2_amd64.deb
Files:
b697d7740dd30ed664b87ee957de9080 2135 web optional htmldoc_1.8.27-8+deb9u2.dsc
b284888cc2285b32e96cbce620b927c1 4462252 web optional htmldoc_1.8.27.orig.tar.gz
d24e3ccaecde4d0ebe7adeb397458f1a 13340 web optional htmldoc_1.8.27-8+deb9u2.debian.tar.xz
e9d436027488863a0dcde4d1faff869b 4843392 web optional htmldoc-common_1.8.27-8+deb9u2_all.deb
24e77562996360fb9c8f54a1fbb79687 387200 debug extra htmldoc-dbgsym_1.8.27-8+deb9u2_amd64.deb
dc70b5979124ad100296b418be54b6a7 8072 web optional htmldoc_1.8.27-8+deb9u2_amd64.buildinfo
5a6808ae9d793bd5c653989292831abd 207480 web optional htmldoc_1.8.27-8+deb9u2_amd64.deb
-----BEGIN PGP SIGNATURE-----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=vaLv
-----END PGP SIGNATURE-----
Reply to: