-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 08 Sep 2024 08:44:19 +0200 Source: expat Binary: expat expat-dbgsym libexpat1 libexpat1-dbgsym libexpat1-dev libexpat1-udeb Architecture: mipsel Version: 2.5.0-1+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: mipsel Build Daemon (mipsel-osuosl-03) Changed-By: Laszlo Boszormenyi (GCS) Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Closes: 1080149 1080150 1080152 Changes: expat (2.5.0-1+deb12u1) bookworm-security; urgency=medium . * Backport security fix for CVE-2024-45490: reject negative len for XML_ParseBuffer() (closes: #1080149). * Backport security fix for CVE-2024-45491: detect integer overflow in dtdCopy() (closes: #1080150). * Backport security fix for CVE-2024-45492: detect integer overflow in function nextScaffoldPart() (closes: #1080152). Checksums-Sha1: a139c3fd9b12472da60695ed178aa7f08eef098d 33132 expat-dbgsym_2.5.0-1+deb12u1_mipsel.deb 73676bddb2540283df564c87c43cf6622ec7f8a6 8584 expat_2.5.0-1+deb12u1_mipsel-buildd.buildinfo d6f473966ace4f0a99e2c8011a3a739e27a13a3a 40420 expat_2.5.0-1+deb12u1_mipsel.deb 45aeb8188a707b2cc3544674f9cb7aa6d1796450 297768 libexpat1-dbgsym_2.5.0-1+deb12u1_mipsel.deb 18a53e505c795884f0f4b42b0a9a993c2e9f959f 148644 libexpat1-dev_2.5.0-1+deb12u1_mipsel.deb 151286b4ed5a7e4170b495a65be26eba1cd18e97 54304 libexpat1-udeb_2.5.0-1+deb12u1_mipsel.udeb 94b89b96f9d89a4a309cb108fdb83e42b4be2cd0 94228 libexpat1_2.5.0-1+deb12u1_mipsel.deb Checksums-Sha256: 94c12eab69441488c5aa6c55b705bd4ad4f2d144f234c8be83377d33629bfd3b 33132 expat-dbgsym_2.5.0-1+deb12u1_mipsel.deb d3a47aaa0023172f7e68208fdc75974e31149e23b2ff5c50842125cdbc523ffa 8584 expat_2.5.0-1+deb12u1_mipsel-buildd.buildinfo bb2b4db3cf3097a3335e2a18f76f862da609ed516276fbe9b25c2bc7ac22a8ec 40420 expat_2.5.0-1+deb12u1_mipsel.deb 2aba945accef5808da354e68e4866dc94d214136e82cac2ea099691f4e0fe312 297768 libexpat1-dbgsym_2.5.0-1+deb12u1_mipsel.deb 932ce8356df4990693384e2df9bb02673531f237558a1f18fe1c8ed3aed07420 148644 libexpat1-dev_2.5.0-1+deb12u1_mipsel.deb ddb4bc78a06962347ecd5b11bfed8015669f92c2173268aa6bb0ed614779f94c 54304 libexpat1-udeb_2.5.0-1+deb12u1_mipsel.udeb dc625341be940b76cbc8c5aebdef69802c237df045236917e85d900353b43715 94228 libexpat1_2.5.0-1+deb12u1_mipsel.deb Files: bee1a18534164effda7bb48632ed177e 33132 debug optional expat-dbgsym_2.5.0-1+deb12u1_mipsel.deb 9609df14304d7ce0115491bfc7dd564c 8584 text optional expat_2.5.0-1+deb12u1_mipsel-buildd.buildinfo 1c6d975692fd227086c93218b09ace70 40420 text optional expat_2.5.0-1+deb12u1_mipsel.deb 5999498247fd4114b65d2bc06f09cdf4 297768 debug optional libexpat1-dbgsym_2.5.0-1+deb12u1_mipsel.deb b58fcc6d85f7d61886646b01ba55aa24 148644 libdevel optional libexpat1-dev_2.5.0-1+deb12u1_mipsel.deb e37ab89943ac3bb6fe63d653f14fb76b 54304 debian-installer optional libexpat1-udeb_2.5.0-1+deb12u1_mipsel.udeb c4b3a3bd727c1c80186b3c85d884c655 94228 libs optional libexpat1_2.5.0-1+deb12u1_mipsel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEunmvxaaGKuI+hxxClmZGXOM83t8FAmblTDIACgkQlmZGXOM8 3t/OVhAAo0vLfV3Pv8nXUFip+EEy/Ply/rZuAH16M1ISSeC2ajh8/0c/C/w17a56 7BlayFa0lJpwOtWttxwf4e61YgZ0n2RCr5fif3+5po0VGFwCSiK5eP3HZZtTw3Lx PwY8gYB9lYQROipYTz7rasBtRpfqczZ2+sPjMlrmSZGQrDo+/w8DnTIFEqqi+L+H /jkGf9lBBg0faU5OMe1vI0y54dQTEDp5Kikxw1zVZTZcaS+I8CL/yoWMDuRlL4Ji UqTc3SE51oZyigh3obVWhZw8AqQMGHCuEgbIu2BSF1hDAJ9+Ys1wg1xyIxK059bn MafTm7COocC43eb1qmlhU/iH++wM17uHS+FWV/5CPGNDUX4XOfD/6TKvmElZz2Fn Ciekd9hGRZhXnny2D1A3Abd6m+smgFR92nfhTDZNAUp9u9gTYCMVwJ6++cLWRGpF hCBAxGeijbPlQeaCj6+W2R3wgiiEbVFjWdac8TjeriXM0dVDKtdzJREvrnqynDse QHBI3QaZs1v9Bjtprwifvn8KC161lNzqbFwlvP0dnzM/tAVPLBZbJFVEemnvcjQo JKhfCQ14GtGzCFedR5r1iWFDBXXzLTH02mFgSjb7AhzTemuBmSXgdvgAtBIvFLsa G5wA5mO//5SgxXKXuCH6JKHXNCfH4aCAJGS87igHsm0rBoWKJQs= =UgWi -----END PGP SIGNATURE-----