Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted libexif 0.6.21-5.1+deb10u3 (source) into proposed-updates->stable-new, proposed-updates
Date: Sat, 30 May 2020 19:17:08 +0000
Signed by: Mike Gabriel <sunweaver@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 25 May 2020 22:01:18 +1000
Source: libexif
Architecture: source
Version: 0.6.21-5.1+deb10u3
Distribution: buster
Urgency: medium
Maintainer: Debian PhotoTools Maintainers <pkg-phototools-devel@lists.alioth.debian.org>
Changed-By: Hugh McMaster <hugh.mcmaster@outlook.com>
Closes: 961407 961409 961410
Changes:
 libexif (0.6.21-5.1+deb10u3) buster; urgency=medium
 .
   * Add upstream patches to fix multiple security issues:
     - cve-2020-13112.patch: Fix MakerNote tag size overflow issues at
       read time (CVE-2020-13112) (Closes: #961407).
     - cve-2020-13113.patch: Ensure MakerNote data pointers are
       NULL-initialized (CVE-2020-13113) (Closes: #961409).
     - cve-2020-13114.patch: Add a failsafe on the maximum number of
       Canon MakerNote subtags to catch extremely large values in tags
       (CVE-2020-13114) (Closes: #961410).
Checksums-Sha1:
 4f64cbc1a81d5be96fb00479c2ecc21a6328e672 2149 libexif_0.6.21-5.1+deb10u3.dsc
 83d874919e5fcc94ec173d12b2ce37958a7d4833 17460 libexif_0.6.21-5.1+deb10u3.debian.tar.xz
 bd1e28d228bc992c8182c687a4ef61f1e1e32996 7990 libexif_0.6.21-5.1+deb10u3_source.buildinfo
Checksums-Sha256:
 f2bc9aa115afa6677af69104271c6bbfc3ee850d46c8ac44bf500e750ac42c08 2149 libexif_0.6.21-5.1+deb10u3.dsc
 145cbc5d189453b5502b5e68d8fcacd9e9ecea25a8922b5ed4b363d5aec6b51a 17460 libexif_0.6.21-5.1+deb10u3.debian.tar.xz
 44eebbc6b98605f26f5b008a81dba53dcd51583aebf1cae518f82bf7686742ca 7990 libexif_0.6.21-5.1+deb10u3_source.buildinfo
Files:
 ff02ede5b25b6562df054bb1385bb90d 2149 libs optional libexif_0.6.21-5.1+deb10u3.dsc
 efd7d86ebd81ec4880288fa6101c08bb 17460 libs optional libexif_0.6.21-5.1+deb10u3.debian.tar.xz
 49d43370d4e9f504d71127350e2f7ab7 7990 libs optional libexif_0.6.21-5.1+deb10u3_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=6zSk
-----END PGP SIGNATURE-----

News for package libexif