Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted pdfresurrect 0.12-6+deb9u1 (source) into oldstable
Date: Tue, 01 Dec 2020 03:00:11 +0000
Signed by: Roberto C. Sanchez <roberto@familiasanchez.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 30 Nov 2020 20:29:23 -0500
Source: pdfresurrect
Binary: pdfresurrect
Architecture: source
Version: 0.12-6+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Francois Marier <francois@debian.org>
Changed-By: Roberto C. Sánchez <roberto@debian.org>
Description:
 pdfresurrect - tool for extracting/scrubbing versioning data from PDF documents
Changes:
 pdfresurrect (0.12-6+deb9u1) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * Fix CVE-2019-14934: pdf_load_pages_kids in pdf.c doesn't validate a
     certain size value, which leads to a malloc failure and out-of-bounds
     write
   * Fix CVE-2020-20740: lack of header validation checks causes
     heap-buffer-overflow in pdf_get_version()
Checksums-Sha1:
 e3e40d36875b2563abaad5d77d20046f395886f8 1940 pdfresurrect_0.12-6+deb9u1.dsc
 72d960875c8ff65609f814062bfdde9d9eba3802 65243 pdfresurrect_0.12.orig.tar.gz
 4ab479f4cb5b81264bda38d5e322118a601e6d39 5532 pdfresurrect_0.12-6+deb9u1.debian.tar.xz
 07e1e0e3746392cfa92e49ed8652f7d45aa8442a 6162 pdfresurrect_0.12-6+deb9u1_amd64.buildinfo
Checksums-Sha256:
 f6a83979c056f00aceb1390f223093feb47eed988fab5ad7bdfd1f3344a28abd 1940 pdfresurrect_0.12-6+deb9u1.dsc
 f2967d1fbabc24c6a50c5981c738c7daab7cd761261e64421322bd6010638d47 65243 pdfresurrect_0.12.orig.tar.gz
 7a6afd9c5c7f69d6968dbed6c7589272b80291016f8716a5dc4ec9513a869596 5532 pdfresurrect_0.12-6+deb9u1.debian.tar.xz
 c74744957c81e3b5b85856f40b79d7b2ac8e5d3f0daf7a201569f87f2afb2672 6162 pdfresurrect_0.12-6+deb9u1_amd64.buildinfo
Files:
 a5a045048ce605ff34c9fef25caafd4b 1940 text extra pdfresurrect_0.12-6+deb9u1.dsc
 3579be0aa3ba9872b4e84b5a282176b6 65243 text extra pdfresurrect_0.12.orig.tar.gz
 622abeaa0793d42990623031fc382fdd 5532 text extra pdfresurrect_0.12-6+deb9u1.debian.tar.xz
 ac6b8ef32d5e7916fc4a60faa201b3df 6162 text extra pdfresurrect_0.12-6+deb9u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=YgFC
-----END PGP SIGNATURE-----

News for package pdfresurrect