Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted privoxy 3.0.26-3+deb9u2 (source) into oldstable
Date: Tue, 09 Mar 2021 10:00:12 +0000
Signed by: Roland Rosenfeld <roland@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 08 Mar 2021 14:11:04 +0100
Source: privoxy
Architecture: source
Version: 3.0.26-3+deb9u2
Distribution: stretch-security
Urgency: medium
Maintainer: Roland Rosenfeld <roland@debian.org>
Changed-By: Roland Rosenfeld <roland@debian.org>
Changes:
 privoxy (3.0.26-3+deb9u2) stretch-security; urgency=medium
 .
   * 49_CVE-2021-20272: ssplit(): Remove an assertion that could be
     triggered with a crafted CGI request (CVE-2021-20272).
   * 50_CVE-2021-20273: cgi_send_banner(): Overrule invalid image types.
     Prevents a crash with a crafted CGI request if Privoxy is toggled off
     (CVE-2021-20273).
   * 51_CVE-2021-20275: chunked_body_is_complete(): Prevent invalid read of
     size two (CVE-2021-20275).
   * 52_CVE-2021-20276: Obsolete pcre: Prevent invalid memory accesses
     (CVE-2021-20276).
Checksums-Sha1:
 7e7443caa21f541eebf240ff3f8504aa88e8850e 1940 privoxy_3.0.26-3+deb9u2.dsc
 6f33ab4bf2521ccf8ff112abf54917bae6d60a3b 30368 privoxy_3.0.26-3+deb9u2.debian.tar.xz
 43d431f388eaeea824045ce4e63a5810fab2ac7b 10330 privoxy_3.0.26-3+deb9u2_source.buildinfo
Checksums-Sha256:
 c0c5fb2c684acd93838c0e38e029d815e7ff6a2b7f2bd876f8f024563cf077a2 1940 privoxy_3.0.26-3+deb9u2.dsc
 9a90b0be06eb8732883bccf03d6555525c88cb1272968fa26c56e658f5f1f02c 30368 privoxy_3.0.26-3+deb9u2.debian.tar.xz
 90cc6f3e088ac9b8d93eb7f0193dff95748a5ba797bdc1de0c381e6721653ec4 10330 privoxy_3.0.26-3+deb9u2_source.buildinfo
Files:
 4abf086abfdb877b3db9eff52ae9ba79 1940 web optional privoxy_3.0.26-3+deb9u2.dsc
 8a87d5ece9e7e5f4a9cf753b43770ba5 30368 web optional privoxy_3.0.26-3+deb9u2.debian.tar.xz
 cc8423a23f7ba966b93eec85fe0c484a 10330 web optional privoxy_3.0.26-3+deb9u2_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEErC+9sQSUPYpEoCEdAnE7z8pUELIFAmBGJB8ACgkQAnE7z8pU
ELLXhhAAjJr3IpMAVYGZD3/iiNERDiBIOMxrj9A/4Brhh2sqms267nGwQgJGKZ+2
x4GOJN6CyYTKUTunOSK1gSbCBQlIkJutMJDiInPUzAeGgcSQ1fO5OabgAL51Xku+
/lj+DpKE++2P0/6AUcJXuzt8X7GhzORkJV9PEDeUy7sWOmIxS/RSsYJDtXz2vdZb
9Rwk5nzwRFXWeyLryUCw4UQAC/SbAGQZsrHtMwg/w9R3UECoa2Jsy7/nKf6ASmqJ
jKqpZ8GOl7XDXPF4E/EZlz2kmrhKJGcQ8NtmtH5RXLPJUWLD1P4ll7E4KkGZTlxf
EUQx22zQivWjThY2bE23hFdGscJRJ6XmKNMoEDTRMQ6x97KxBCO3kFy6SPJs6aQg
peWB9Pc01oaZrWMBM+w227znQKL2Vct7hDVX7HVbiBXoCl3OS6F7lC3k4F3UYXqs
7mfknBgzEmtwxFw7BMVT+pWFA12y1fCftO9v2j6f8rnZxK2Eqqqz1b4HRnIEXjkr
KG3K0uNmFnkpHnQq92rK4LgQhOGCPHWyR81b/kNDOv9S4EvryrCJeUJoSi5hRDCn
9K0zY7p1Ol6QwFBfKeTtHHjAh4o7f+iGHXY4moriNJwJjrqWBzbPiFxoxReJ+ktp
u+4F6DrNjOc0ninw/bJ7xXIRvfGdpT6g3BSLH4s2a3Fg8SqvgcU=
=AR0D
-----END PGP SIGNATURE-----

News for package privoxy