Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted json-c 0.11-4+deb8u2 (source amd64 all) into oldoldstable
Date: Sun, 31 May 2020 15:40:14 +0000
Signed by: Mike Gabriel <sunweaver@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 31 May 2020 16:37:04 +0200
Source: json-c
Binary: libjson-c2 libjson-c-dev libjson-c2-dbg libjson-c-doc libjson0-dev libjson0
Architecture: source amd64 all
Version: 0.11-4+deb8u2
Distribution: jessie-security
Urgency: medium
Maintainer: fabien boucher <fabien.dot.boucher@gmail.com>
Changed-By: Mike Gabriel <sunweaver@debian.org>
Description:
 libjson-c-dev - JSON manipulation library - development files
 libjson-c-doc - JSON manipulation library - documentation files
 libjson-c2 - JSON manipulation library - shared library
 libjson-c2-dbg - JSON manipulation library - debug symbols
 libjson0   - JSON manipulation library (transitional package)
 libjson0-dev - JSON manipulation library (transitional package)
Closes: 960326
Changes:
 json-c (0.11-4+deb8u2) jessie-security; urgency=medium
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2020-12762: Fix integer overflow and out-of-bounds write via a
     large JSON file, as demonstrated by printbuf_memappend. (Closes:
     #960326). This version uses the upstream sanctioned patch version.
Checksums-Sha1:
 cebfd1bf9d3aba80a09d9549427d151781f36d91 2243 json-c_0.11-4+deb8u2.dsc
 bed0195c86495980ec60dc479bc843408ff71f8f 274752 json-c_0.11-4+deb8u2.debian.tar.xz
 9b90f0120615fcfa477a6bbcff357bbef8b5a458 25416 libjson-c2_0.11-4+deb8u2_amd64.deb
 52c40ecc56e266048030e5db8cc28d041277c1b0 35778 libjson-c-dev_0.11-4+deb8u2_amd64.deb
 678dbb11a27f1e6768596756a8e64607106fb45e 43128 libjson-c2-dbg_0.11-4+deb8u2_amd64.deb
 6fcf5570fa18787665794ed4dc8610b394f82e1a 18896 libjson-c-doc_0.11-4+deb8u2_all.deb
 dda9a3e130c82f3dab71192bf7a070d531d58f9c 1228 libjson0-dev_0.11-4+deb8u2_amd64.deb
 8351c327761eb9cb04160e3797e83dfb4dd1fb17 1110 libjson0_0.11-4+deb8u2_amd64.deb
Checksums-Sha256:
 00f97ab4eda9fccc2b6d47b17f08d4b01eda8cd3dcf5d5a36804c0bfff10a31e 2243 json-c_0.11-4+deb8u2.dsc
 3d27159c777f44ecfe13bf66ca95efac28031a23fce8416cf966793cf6986ceb 274752 json-c_0.11-4+deb8u2.debian.tar.xz
 5d91b16bb435f4b8acb61a1a918070aba4c4cb23ae8f0cfa99f4421c3bd5cc0f 25416 libjson-c2_0.11-4+deb8u2_amd64.deb
 d13a3fac8b8741a75838d704872925727a8daad20770fe28fa26a15aa9e3af14 35778 libjson-c-dev_0.11-4+deb8u2_amd64.deb
 1b343ac3fa2355373affb7873a7d8b0ed9d053002ca173ee30f37710a99e293a 43128 libjson-c2-dbg_0.11-4+deb8u2_amd64.deb
 613b8617f2a723fcf971eafed2ad4c4a513d2d752fe51d4f721be26e78514abc 18896 libjson-c-doc_0.11-4+deb8u2_all.deb
 e9895ae480ac602ac659fa53ec41eb826d32ca93666eb630d6a1e29bca419532 1228 libjson0-dev_0.11-4+deb8u2_amd64.deb
 7b2105c9c255767acadc8df56ad482818160abb0b7e192267b73f83281487ccb 1110 libjson0_0.11-4+deb8u2_amd64.deb
Files:
 40da8e4460b1fe6d16d3f9e2b02f711b 2243 libs extra json-c_0.11-4+deb8u2.dsc
 dac056509636154f9f80e11f654435a0 274752 libs extra json-c_0.11-4+deb8u2.debian.tar.xz
 e0187538fc631ebc27b5c64c7b16d24f 25416 libs extra libjson-c2_0.11-4+deb8u2_amd64.deb
 d5ab71c386edc659ca52a4a5ffa46821 35778 libdevel extra libjson-c-dev_0.11-4+deb8u2_amd64.deb
 c1a63f8562ff6266c5fdaae87bf92996 43128 debug extra libjson-c2-dbg_0.11-4+deb8u2_amd64.deb
 48f89dd9998a02278c3404482aea9162 18896 doc extra libjson-c-doc_0.11-4+deb8u2_all.deb
 fe97b4e42489a053801856e531bfb7b1 1228 oldlibs extra libjson0-dev_0.11-4+deb8u2_amd64.deb
 6ff085f57c238c8daa2798f5ea78f68e 1110 oldlibs extra libjson0_0.11-4+deb8u2_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQJJBAEBCAAzFiEEm/uu6GwKpf+/IgeCmvRrMCV3GzEFAl7Ty0cVHHN1bndlYXZl
ckBkZWJpYW4ub3JnAAoJEJr0azAldxsxEroP/1txQS7bRjg8igPyPxgZ1odvwilZ
VQGcBgqvFt72BXfCE7+fele4XKU3YR2C9qw/pmhY2A0P/vIMP2TYeb0rNpk5tHSN
pdf29B7g0pAVjHIBFA+ixcBkrKaB9xNHJpJFM8i1LUMlwKi1E8LF54apUPXAToh6
rehipYLnYUJ0HCQ8gARKpe8Ha/ecNvGV6sKnTDeUVQfMcg2+q1hU+TRJzw+ai35/
4kQWqEP1kclyUI51Y6IaFlKBHvQCARVSVeH7Ms+0p76aB7NeNsTwor9ue2h/DZmG
gd7dwGMsgR16TLe8zYnjsFoKbFmYCyH0EDv7fR0oftBAYwXLcs+J3IG7ZW62ioyt
+mhcu4tRca1dfFQCon4RIRU3a8aQ487HHp8YOzs6PJhucASet5/jgNyrhnNSY76Z
xBkCCv/5HeNIJHO8eiOkZB19lOK9UcFhj/SQSXzzplLpM2a6hPxAo0Ht8/2rpElc
1gvfcGE1N+28wauU19VSC6CBEALbvIdbB/QCTF5T2jICZ2dqyaR+ck40VBPCfJk/
6fJzaoA5ixD/QixVtQBpU7M0tbWnISmbbMezMFLxzJW5tISqzuGfpgrrammacLU8
PwwdW21EAFEry2SI/Pg24fTxnuLCC3hHOoNe8RlddoAa//pTc4tgAENHjF6F/uTj
B7Q+gq58C4dSJ3u3
=H8t5
-----END PGP SIGNATURE-----
News for package json-c
