Accepted libpodofo 0.9.0-1.1+deb7u1 (source amd64) into oldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 29 Apr 2017 18:35:06 +0000
Source: libpodofo
Binary: libpodofo-dev libpodofo-utils libpodofo0.9.0
Architecture: source amd64
Version: 0.9.0-1.1+deb7u1
Distribution: wheezy-security
Urgency: high
Maintainer: Oleksandr Moskalenko <malex@debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
libpodofo-dev - PoDoFo development files
libpodofo-utils - PoDoFo utilities
libpodofo0.9.0 - PoDoFo - library to work with the PDF file format
Changes:
libpodofo (0.9.0-1.1+deb7u1) wheezy-security; urgency=high
.
* Non-maintainer upload by the LTS team.
* Fix CVE-2017-7379, CVE-2015-8981, CVE-2017-5852, CVE-2017-5853,
CVE-2017-5854, CVE-2017-5886 and CVE-2017-6844.
Several heap-based buffer overflows, integer overflows and NULL pointer
dereferences have been discovered in libpodofo that allow remote attackers
to cause a denial of service (application crash) or other unspecified
impact via a crafted PDF document.
Checksums-Sha1:
53bb9f1f091933fe9d19e14ee6ab4bb1b23cec88 2105 libpodofo_0.9.0-1.1+deb7u1.dsc
981e08ac853e6461cf850359a8d8939508787e6f 1079670 libpodofo_0.9.0.orig.tar.gz
17886c30f68dba7f21785caa157a011f46c69091 14628 libpodofo_0.9.0-1.1+deb7u1.debian.tar.gz
324d275bca56da65d0725c46ca1ab6f27579d41d 201424 libpodofo-dev_0.9.0-1.1+deb7u1_amd64.deb
54ff1c9bd8b7f7388b6f45f866f7971d445ae780 317152 libpodofo-utils_0.9.0-1.1+deb7u1_amd64.deb
75f94561af4855f0508b1d6dcf766b9ea53aee2c 607864 libpodofo0.9.0_0.9.0-1.1+deb7u1_amd64.deb
Checksums-Sha256:
d870007f76ccc5e4dea892cb51e0f2a5d88c1eb089570eb818bdbba26f7edc0f 2105 libpodofo_0.9.0-1.1+deb7u1.dsc
560884b7bd277f0bee0707610ab3d935b77455babab3dae2a14288d4355b286c 1079670 libpodofo_0.9.0.orig.tar.gz
9101dfc84d159a5a2b3140efb53c944c774e467ecc8f58d14c3fc95a9da3aefc 14628 libpodofo_0.9.0-1.1+deb7u1.debian.tar.gz
a1c6de3d189ed4b4fd9d6384e83d6890e9a25bb18ccb02d48e34870c4504f3e6 201424 libpodofo-dev_0.9.0-1.1+deb7u1_amd64.deb
64f49ae03d095393e5cfd7b047b74f441b6f98f61fe60003d29ca1111b213db3 317152 libpodofo-utils_0.9.0-1.1+deb7u1_amd64.deb
55f2e739e35718c3152099c06a38d30db8d29ff94c58e823b485e50309307111 607864 libpodofo0.9.0_0.9.0-1.1+deb7u1_amd64.deb
Files:
24618cc13e8d90edca652623d471ac36 2105 libdevel extra libpodofo_0.9.0-1.1+deb7u1.dsc
2a9ac8cbb5e6575dbc00f083ad8996fb 1079670 libdevel extra libpodofo_0.9.0.orig.tar.gz
6dc419cdee89beb79ab1a0ae742c85f8 14628 libdevel extra libpodofo_0.9.0-1.1+deb7u1.debian.tar.gz
2c44584957c90457d3f0be2b96ee9fd7 201424 libdevel extra libpodofo-dev_0.9.0-1.1+deb7u1_amd64.deb
e5b987158a23e36f51b67f0aee9a14ad 317152 libdevel extra libpodofo-utils_0.9.0-1.1+deb7u1_amd64.deb
47506d301ae66cfa3f171249ef5c907d 607864 libs extra libpodofo0.9.0_0.9.0-1.1+deb7u1_amd64.deb
-----BEGIN PGP SIGNATURE-----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=hPhl
-----END PGP SIGNATURE-----