Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted exiv2 0.25-3.1+deb9u2 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Date: Fri, 03 Jul 2020 18:17:33 +0000
Signed by: Roberto C. Sanchez <roberto@familiasanchez.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 15 Jun 2020 18:15:41 -0400
Source: exiv2
Binary: exiv2 libexiv2-14 libexiv2-dev libexiv2-doc libexiv2-dbg
Architecture: source
Version: 0.25-3.1+deb9u2
Distribution: stretch
Urgency: medium
Maintainer: Debian KDE Extras Team <pkg-kde-extras@lists.alioth.debian.org>
Changed-By: Roberto C. Sanchez <roberto@debian.org>
Description:
 exiv2      - EXIF/IPTC/XMP metadata manipulation tool
 libexiv2-14 - EXIF/IPTC/XMP metadata manipulation library
 libexiv2-dbg - EXIF/IPTC/XMP metadata manipulation library - debug
 libexiv2-dev - EXIF/IPTC/XMP metadata manipulation library - development files
 libexiv2-doc - EXIF/IPTC/XMP metadata manipulation library - HTML documentation
Changes:
 exiv2 (0.25-3.1+deb9u2) stretch; urgency=medium
 .
   * Non-maintainer upload by the Security Team.
   * Minor adjustment to the patch for CVE-2018-10958 and CVE-2018-10999.  The
     initial patch was overly restrictive in counting PNG image chunks.
   * CVE-2018-16336: remote denial of service (heap-based buffer over-read) via
     a crafted image file.
Checksums-Sha1:
 e2e0103e9b910afeb273bb689c303dc8ccde0f06 2304 exiv2_0.25-3.1+deb9u2.dsc
 2003297c6a5b5806f65257534549771bf123a4f8 28040 exiv2_0.25-3.1+deb9u2.debian.tar.xz
 02469bdeac772d4336150e2cea0891df55657c25 9204 exiv2_0.25-3.1+deb9u2_amd64.buildinfo
Checksums-Sha256:
 7aa1c1b3382f0d8704d8be48509d492713a5cbe65ffd4681d97eb79af774c36e 2304 exiv2_0.25-3.1+deb9u2.dsc
 bc9636648c0cf565e5c379a8818d7e0bdaf1ce30f1688381653307e731829418 28040 exiv2_0.25-3.1+deb9u2.debian.tar.xz
 69e9407cc4e2f437efb7ce2cd91634e2bace268106f79bd84ce4be22b8401e07 9204 exiv2_0.25-3.1+deb9u2_amd64.buildinfo
Files:
 def74ceaf3d62c1d6be070c51fee89a8 2304 graphics optional exiv2_0.25-3.1+deb9u2.dsc
 68b720c63b4a3fb9457aba8b5cd94157 28040 graphics optional exiv2_0.25-3.1+deb9u2.debian.tar.xz
 aae78ad61c34691e237e6bda2b958e5a 9204 graphics optional exiv2_0.25-3.1+deb9u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=VIoz
-----END PGP SIGNATURE-----

News for package exiv2