-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 19 Nov 2018 08:11:26 -0200 Source: uriparser Binary: liburiparser1 liburiparser-dev Architecture: source amd64 Version: 0.8.0.1-2+deb8u1 Distribution: jessie-security Urgency: medium Maintainer: Jörg Frings-Fürst <debian@jff-webhosting.net> Changed-By: Lucas Kanashiro <kanashiro@debian.org> Description: liburiparser-dev - development files for uriparser liburiparser1 - URI parsing library compliant with RFC 3986 Changes: uriparser (0.8.0.1-2+deb8u1) jessie-security; urgency=medium . * Non-maintainer upload by the Debian LTS team. * Fix CVE-2018-19200: UriCommon.c allows attempted operations on NULL input via a uriResetUri* function. * Fix CVE-2018-19199: UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication. * Fix CVE-2018-19198: UriQuery.c allows an out-of-bounds write via a uriComposeQuery* or uriComposeQueryEx* function because the '&' character is mishandled in certain contexts. Checksums-Sha1: 977856dff160aa8aa5f7a92dc688f1c762459b87 1980 uriparser_0.8.0.1-2+deb8u1.dsc 53b16dd0640fda006ba4f9d750fec7e7c58836a9 337905 uriparser_0.8.0.1.orig.tar.bz2 12a82a1d9eecbaef861d05ed7a1f01a786b3fc60 6616 uriparser_0.8.0.1-2+deb8u1.debian.tar.xz 2197b1a47278e00cb165ca1425742f64dfd80f5d 41284 liburiparser1_0.8.0.1-2+deb8u1_amd64.deb acef1c47278b401ec4a80216b5d599c400cb1766 15662 liburiparser-dev_0.8.0.1-2+deb8u1_amd64.deb Checksums-Sha256: d98863957e20e0ded9c2cb9f4ca915d132491a7db631665d34b4184bfb31f13f 1980 uriparser_0.8.0.1-2+deb8u1.dsc 29fb203e1b3262808dd1d2b9527ab65c4f88beec0d4289cffcfba05385618f2d 337905 uriparser_0.8.0.1.orig.tar.bz2 af24f6cfa418b9ff25d14ad8bffa81be6f0c1231db2b136305e33989746ad316 6616 uriparser_0.8.0.1-2+deb8u1.debian.tar.xz c4e8fb9820f5d2ef09cfb185271e6cb7c1d8c34e44f492c30fdc6ed9314217cb 41284 liburiparser1_0.8.0.1-2+deb8u1_amd64.deb 8bc0b26399174f582979bf9602ba1fc7fb68f095960e2e62d295aae354a25c52 15662 liburiparser-dev_0.8.0.1-2+deb8u1_amd64.deb Files: 9556ff7d23b5330d73d2dd12aebb6ea0 1980 libs optional uriparser_0.8.0.1-2+deb8u1.dsc c80248bc5ba1f6713edda2ac2f57e7f3 337905 libs optional uriparser_0.8.0.1.orig.tar.bz2 2b778d1c6a50ec25ec45e7769ba64bd6 6616 libs optional uriparser_0.8.0.1-2+deb8u1.debian.tar.xz f2868dafb1c2dfaf3ff2b36ea2ab874b 41284 libs optional liburiparser1_0.8.0.1-2+deb8u1_amd64.deb 30a9d3dca6b7d0a129d1d14e12c11199 15662 libdevel optional liburiparser-dev_0.8.0.1-2+deb8u1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJb894sAAoJEPgjonKYg8l8DzIP/iFPi8KZQ3PRx153/uxNc7Iv c+5lhOgp7m5fPzhsSrQlicvTyYXVZJpIF6ee1O6rWmRRUoVl02calEXwMGr/LaZ7 tdaaC5XMsfklbKA6DxGib3GBPwq96auOPIfmhdEvptbry6BrBcwrz/HeLK3HtbKS 9Edpg+BnTmak+E40TYdgaRMJ3mKIRsvTYcPtoaTqJqTPyeWfeAPP+tu8wt9Z4sXw VFVlTxe0XLbEUbDryZ/pgFb5ULE+Ku3Yg3nNcEm75rZJ36hk6QMdciH9htaXG43e D//nr0JOUz0jW/qwVZjS0iIE924eEasUxnv/lLuYB+x7VwxA2icBGJOcTy9pB+pF M+TJ9GbgHpXboPga8WoqycnL/AEjeGOctkO99s+EFRACXQJtnRiFGFqbRh0ZjwvO TFCGAZMlGOrUpDpe9IwKoZ+e+6yImBLVcT+3KrKngVams/47RjDgFYCAe6Ranyi5 QdwRH5DXFXwhEjsczltVkdUObY5gfbdOf5iOYml0K+Q1K4iVexgyAonmOMeq9ePR DY90uDTvlyrNbvOY8DDulx0DXRbcMjTblGcLY3QwxLJZpmmjQTSgHPRPqK9Asd6u IE3DhX/eRbifu3hj+N4jNPP0GRTJTW2UIKEdIQhp6zxaBuPGiCCof0HosMTNbVEg WH8mnTyugSjoVDKllyEs =WZ4H -----END PGP SIGNATURE-----
