-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 09 Feb 2019 18:12:00 +0100 Source: unzip Architecture: source Version: 6.0-22 Distribution: unstable Urgency: medium Maintainer: Santiago Vila <sanvila@debian.org> Changed-By: Santiago Vila <sanvila@debian.org> Closes: 889838 Changes: unzip (6.0-22) unstable; urgency=medium . * Fix buffer overflow in password protected ZIP archives. Closes: #889838. Patch borrowed from SUSE. For reference, this is CVE-2018-1000035. * Rules-Requires-Root: no. Checksums-Sha1: 4af9e076ed0b3abd5ddee18fa8e3f8639bb7418b 1344 unzip_6.0-22.dsc a59b77b7e3b6e5dbcb32a19df6656d506797c68b 18212 unzip_6.0-22.debian.tar.xz 9b0c7e461ad5e1cd86d79f2e77027b93ac817393 4596 unzip_6.0-22_source.buildinfo Checksums-Sha256: 22cf3115ada5ad5e9c232d8bc39e4452a1891f75e64e95053f696e80938e94c7 1344 unzip_6.0-22.dsc f3c80c1e3917d59cb2fe72f0431159c919f2df7fc96f5b539c91cc96fc02ecfa 18212 unzip_6.0-22.debian.tar.xz f496b07f19f427e49ec022bc41ff19676c41b887282f78d8b2ea775b1a137b95 4596 unzip_6.0-22_source.buildinfo Files: 281e654f5bc5080f32d30db38b18bfcb 1344 utils optional unzip_6.0-22.dsc a0c128f25ad6e13e86f625a782af54f2 18212 utils optional unzip_6.0-22.debian.tar.xz e8f0a6c647d374e378e632e4a7258674 4596 utils optional unzip_6.0-22_source.buildinfo -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEE1Uw7+v+wQt44LaXXQc5/C58bizIFAlxfCv0ACgkQQc5/C58b izKPXAf9FtLg1hC8niRdE9y6PYPmKXX5RJXUALb7Hh8EpBAd+uCOKVogGqeGetsZ T3ky1rmG/ONE/6IyuOU3ADV1a08W+vw2Hn8am5uu2/l503wcZriJ3pQOSYzusfQ7 6cpq3l6N2ITQW85UDUy76zPGXOW1jzPISgYs3T+OAulHTqSx5+lIZn3g/o5tXBmf x2qjy59UjCFlpAxqdmwFMfupru3Bjs2mpx57gxf30kY4zDm95LxRXwVGxxqkc6rZ ZffkNmXeHlQNP+WbCDJEegTYO8tltUDvBF/IrO1QfSXz6I5lZJ6y65pUmZ2iLTE6 kYVJ+9PINe0ZVerOjxLPkjcEl6N6fA== =QpIB -----END PGP SIGNATURE-----