-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 08 Sep 2024 08:44:19 +0200
Source: expat
Binary: expat expat-dbgsym libexpat1 libexpat1-dbgsym libexpat1-dev libexpat1-udeb
Architecture: i386
Version: 2.5.0-1+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Description:
 expat      - XML parsing C library - example application
 libexpat1  - XML parsing C library - runtime library
 libexpat1-dev - XML parsing C library - development kit
 libexpat1-udeb - XML parsing C library - runtime library (udeb)
Closes: 1080149 1080150 1080152
Changes:
 expat (2.5.0-1+deb12u1) bookworm-security; urgency=medium
 .
   * Backport security fix for CVE-2024-45490: reject negative len for
     XML_ParseBuffer() (closes: #1080149).
   * Backport security fix for CVE-2024-45491: detect integer overflow in
     dtdCopy() (closes: #1080150).
   * Backport security fix for CVE-2024-45492: detect integer overflow in
     function nextScaffoldPart() (closes: #1080152).
Checksums-Sha1:
 9cebdf206b7ed020738ddfc5168c152ec69c7144 28368 expat-dbgsym_2.5.0-1+deb12u1_i386.deb
 ca39c6e58a1bce268924a8aea282c74f15e69afb 8674 expat_2.5.0-1+deb12u1_i386-buildd.buildinfo
 2c07351e08e65b4cb2990439e1786685ce213ae5 40976 expat_2.5.0-1+deb12u1_i386.deb
 770cec0937b57cae221f492f147fef675b82d7ff 293304 libexpat1-dbgsym_2.5.0-1+deb12u1_i386.deb
 d61f831babc13500f9622993531d4369ff8111ab 158424 libexpat1-dev_2.5.0-1+deb12u1_i386.deb
 05f72f51a2e84c64897c7bafe78c1ec9d78a6735 59928 libexpat1-udeb_2.5.0-1+deb12u1_i386.udeb
 d8e45055fcc668799ab4fb9435d107d3cf5c3755 103240 libexpat1_2.5.0-1+deb12u1_i386.deb
Checksums-Sha256:
 bf8bc914f44cedcb2dba1e866fb98e9a5a653b9df12830239aeedb0f0270b82c 28368 expat-dbgsym_2.5.0-1+deb12u1_i386.deb
 5b8654404d191e1ff733b7d1dae16830ba59649497c5d77aee78ed5125d1848b 8674 expat_2.5.0-1+deb12u1_i386-buildd.buildinfo
 f3dbfb9e2c4b92dcb3b739f0f989a2fd8f43d6f51cf6c59bf66731efd79e3253 40976 expat_2.5.0-1+deb12u1_i386.deb
 c806c9f79fe3eb3735874e717d445437abb47f6751d001fdc3b45a659c2fce42 293304 libexpat1-dbgsym_2.5.0-1+deb12u1_i386.deb
 51f0373fcb65faff7e747c0853ff4b9db1ee53ce8baa80b0cd4b7e87eb8b44e8 158424 libexpat1-dev_2.5.0-1+deb12u1_i386.deb
 0050bbabc3d63adea57ac4ec5656809f0ba2cb2badd73ae12386d068a76e5f63 59928 libexpat1-udeb_2.5.0-1+deb12u1_i386.udeb
 311bebfa9e4818e033fea3527269c71e6bba1cc12db9a9a6e5f2313d492efede 103240 libexpat1_2.5.0-1+deb12u1_i386.deb
Files:
 ea29eca2fd98466f6bf12b8955665a12 28368 debug optional expat-dbgsym_2.5.0-1+deb12u1_i386.deb
 f65189ecdf89215192c946722b70d942 8674 text optional expat_2.5.0-1+deb12u1_i386-buildd.buildinfo
 59b70c40ecb242bb4b01ae73d40306ab 40976 text optional expat_2.5.0-1+deb12u1_i386.deb
 2dbd4c5f31fd54bba9b2e06c69aab26d 293304 debug optional libexpat1-dbgsym_2.5.0-1+deb12u1_i386.deb
 624f99dbc4870cd3e9cabfb2c3d0dcaa 158424 libdevel optional libexpat1-dev_2.5.0-1+deb12u1_i386.deb
 e3b1b18a3857d97c5b331327cb55e2b5 59928 debian-installer optional libexpat1-udeb_2.5.0-1+deb12u1_i386.udeb
 d8341f51b34a728f06b317091a48edf1 103240 libs optional libexpat1_2.5.0-1+deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=tNeC
-----END PGP SIGNATURE-----