-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 08 Sep 2024 08:44:19 +0200 Source: expat Binary: expat expat-dbgsym libexpat1 libexpat1-dbgsym libexpat1-dev libexpat1-udeb Architecture: s390x Version: 2.5.0-1+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: s390x Build Daemon (zani) Changed-By: Laszlo Boszormenyi (GCS) Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Closes: 1080149 1080150 1080152 Changes: expat (2.5.0-1+deb12u1) bookworm-security; urgency=medium . * Backport security fix for CVE-2024-45490: reject negative len for XML_ParseBuffer() (closes: #1080149). * Backport security fix for CVE-2024-45491: detect integer overflow in dtdCopy() (closes: #1080150). * Backport security fix for CVE-2024-45492: detect integer overflow in function nextScaffoldPart() (closes: #1080152). Checksums-Sha1: b0637ee47cd9a4d860c6f9aceb17fdf723015e65 31580 expat-dbgsym_2.5.0-1+deb12u1_s390x.deb c1eb36a131190647e24a77fd93942f86862f39a0 8654 expat_2.5.0-1+deb12u1_s390x-buildd.buildinfo 427aafbae5b7d433c37e273f83b22e173363985c 39324 expat_2.5.0-1+deb12u1_s390x.deb 42c36db7db26cb3dac7d237f511b99b6dfaccd61 305344 libexpat1-dbgsym_2.5.0-1+deb12u1_s390x.deb dc862c18915d5a80a6a10390b75702788b4247e1 143408 libexpat1-dev_2.5.0-1+deb12u1_s390x.deb 9cde047b2e81461211a91036e43f39644a075fd8 51756 libexpat1-udeb_2.5.0-1+deb12u1_s390x.udeb b2e5fd4aa9bde1f863f24526fdc4cbc57e6242e7 90920 libexpat1_2.5.0-1+deb12u1_s390x.deb Checksums-Sha256: f6459aef3b5039f564fbf40e7f616700fac36230ea08d32f16884cc5839d20c0 31580 expat-dbgsym_2.5.0-1+deb12u1_s390x.deb c54e875ad08b493a5c419de2c2913828942a3915f30ceae5d5b5980c4c22009f 8654 expat_2.5.0-1+deb12u1_s390x-buildd.buildinfo 566f3b183b8654baa26ded1fbf0930969b8e328755982d46c3cefca229e240d8 39324 expat_2.5.0-1+deb12u1_s390x.deb 101ccbf0aaf085a2078eede46feac6166121781c13d5feddcfe75310ef60d48a 305344 libexpat1-dbgsym_2.5.0-1+deb12u1_s390x.deb fe0524e46483f61baf9a84dc1e76ac6716a982588b47457216054790e64d3756 143408 libexpat1-dev_2.5.0-1+deb12u1_s390x.deb 50ff21bd1ff19aa847c65519782f371de9bca8ada8ce523ac6653a461d571746 51756 libexpat1-udeb_2.5.0-1+deb12u1_s390x.udeb 727d97e22948242f9dcea0f2681d59be0bb75e25781dc6581509d2356afdf04d 90920 libexpat1_2.5.0-1+deb12u1_s390x.deb Files: 1069411a8d67f4e6e47ed9b47a661cfd 31580 debug optional expat-dbgsym_2.5.0-1+deb12u1_s390x.deb 2449ce7894fdc42d40c32dd0e6808570 8654 text optional expat_2.5.0-1+deb12u1_s390x-buildd.buildinfo 03620b1737a588d2186473dfb660a64b 39324 text optional expat_2.5.0-1+deb12u1_s390x.deb a231623d5566a03f5bf6bfedd041fae2 305344 debug optional libexpat1-dbgsym_2.5.0-1+deb12u1_s390x.deb 509ed175245c6f73985348b78a7c74df 143408 libdevel optional libexpat1-dev_2.5.0-1+deb12u1_s390x.deb 46216a93370d81ee4e910e93d81f61c3 51756 debian-installer optional libexpat1-udeb_2.5.0-1+deb12u1_s390x.udeb e74c0271c3b3bc2b3dd0e6c242046cfc 90920 libs optional libexpat1_2.5.0-1+deb12u1_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEZTC4/c20pi1/n7UBUhVQ83ojQ7QFAmblS38ACgkQUhVQ83oj Q7TkDBAAq9G044nQNvaeHYdVS5Q9p0w+Ldkl7NCacvqkp47TtKhA4UUi2Y12iSlX 4KzV/HBztZRzohZU9YFm2p3pm0wfwmaQxSSBUNoEFMUfaHJ9JEBNPOLY7QODHsmK 9SidyH6ap7bNoe+Ev7Wp1nfK0ckjrc96wSvH7RNMLTnPPRfy4CZQrHPkTXkD9TRN x35bX4M0Ckjml2fR/MWCOsMeH5fn+6WRrOhxPChTFJdY77Mws3D8RotrDSwPVirL cG+1H22huWF92wWDa9T4EEgGxdLIWxC9nFoE0Npb0RcUHRntMYu1d65oMgBGVjlu RhusxXgvBEpzl2fkhyJ/fPKVAB0DAl6TGVtK42od8ZrgcQ2vsW+u2e02IxDJBDt9 HwqTmnx8UGk123EW1p+AX4fuNF2fI7k0rBb/3h+ChYn7BfKPGa0LmP0M/4oGR8AE kXpPIIX5uTdNsBBQ0Ril5o6Jvw1wAXkCqpYvNtr9mFqbJxE19vBj+XV5CfJfyPpk FI/F7SPZZXWsGcnhDS1NVKr3ZU1yGvAhJy77KgxCM161nrZwYTOmFb22Ej9FSG38 XyCNHrrhmEMtlIfTqnu6fDDGX1Es8ZNNxtBdGmawp69w9lCJHdDOM9ljL56Kgyh0 z9diN09+wuzhQAvV8yCvEoz+LJr4MxbL85uz7IQAtxCkfJCP3fw= =Z7Ef -----END PGP SIGNATURE-----