Accepted opensc 0.19.0-1+deb10u2 (source) into oldoldstable
- To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
- Subject: Accepted opensc 0.19.0-1+deb10u2 (source) into oldoldstable
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Tue, 20 Jun 2023 23:20:22 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: opensc_0.19.0-1+deb10u2_source.changes
- Debian-source: opensc
- Debian-suite: oldoldstable
- Debian-version: 0.19.0-1+deb10u2
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=nkByPjAMtrL8ObVGem4/TIZsQ2IPKfDm6cp/NEI/Btg=; b=egvZ67W6p4557n+Ill4XBwSkaD FK76+gMiTu+I1+9vk2FzVZSlKxlS96PNj2zyE/RK2ghz6zqmkTGoBy+ItEj6+KWzPR/oavqX6NZpl yYmc3lrMtZKX80WDk41QLkJv/iZqHPR36IhGQr86/rOOBamvJjfPMAlved18ZbLETYQx3tXsEokCq HVKxPUWwV9riT+9KMeiNGljuAR6vm5vnoiymU0aI2E5XSXe9O2/XDu50eJUHiB5tXWbfZx99kPuGd ac33woYLjutn2mie/uX5dpJ6Kt0Rv0nHTABRhzhb64d+HFkqh6atunLirRsPvOgeqYhyO7umxtmym 1FPlr9ew==;
- Mail-followup-to: debian-lts@lists.debian.org
- Message-id: <E1qBke6-00BYfE-3U@seger.debian.org>
- Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 20 Jun 2023 22:46:54 +0200
Source: opensc
Architecture: source
Version: 0.19.0-1+deb10u2
Distribution: buster-security
Urgency: high
Maintainer: Debian OpenSC Maintainers <pkg-opensc-maint@lists.alioth.debian.org>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Closes: 1037021
Changes:
opensc (0.19.0-1+deb10u2) buster-security; urgency=high
.
* Non-maintainer upload by the LTS Security Team.
* Fix CVE-2019-6502: Minor memory leak in src/tools/eidenv.c.
* Fix CVE-2021-42779: Heap use after free in sc_file_valid().
* Fix CVE-2021-42780: Use after return in insert_pin().
* Fix CVE-2021-42781: Heap buffer overflow in pkcs15-oberthur.c.
* Fix memory leaks in src/libopensc/pkcs15-oberthur.c.
* Fix CVE-2021-42782: Various stack buffer overflow vulnerabilities.
* Fix CVE-2023-2977: Buffer overrun vulnerability in pkcs15
cardos_have_verifyrc_package(). (Closes: #1037021)
Checksums-Sha1:
77811b9b3b4bdfb0ec683c11a25b0e4aa001a855 2159 opensc_0.19.0-1+deb10u2.dsc
7e4e52c15407b5e1642418068ae52a38b01cdaec 1607290 opensc_0.19.0.orig.tar.gz
c8c140777bbe7aaff258fd27c54fd2fdc661264c 23224 opensc_0.19.0-1+deb10u2.debian.tar.xz
4a4be69eefee23cb8e3f8e09e094632adf73551a 7927 opensc_0.19.0-1+deb10u2_amd64.buildinfo
Checksums-Sha256:
40af612677e1b3159867f86273301509cf35573a414c0774218e50de4c601b8f 2159 opensc_0.19.0-1+deb10u2.dsc
c0b803ba36aac9b5fef7f249adb9dffaf3f298db85304531b6a0574519743cf2 1607290 opensc_0.19.0.orig.tar.gz
9612c6fd65fc4911d039ea699928081b476c214b2ce0de48444a1f7c480c3485 23224 opensc_0.19.0-1+deb10u2.debian.tar.xz
f3b4c31fd173642f4546aa63f09e8c51e7b43579ba3c6b932db5419ec5bf15ed 7927 opensc_0.19.0-1+deb10u2_amd64.buildinfo
Files:
1b35f7f0fdeee7577a04c23cb9269ea1 2159 utils optional opensc_0.19.0-1+deb10u2.dsc
6a37eb339fb3226da6dfb6b1c27d75a2 1607290 utils optional opensc_0.19.0.orig.tar.gz
8bad5ba7e7fb596690fabaa1c56de53c 23224 utils optional opensc_0.19.0-1+deb10u2.debian.tar.xz
0493c75c9f0718aaf300da7d8ca03ed3 7927 utils optional opensc_0.19.0-1+deb10u2_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=Wvc9
-----END PGP SIGNATURE-----