-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 12 Apr 2021 21:30:54 +0530 Source: libpano13 Architecture: source Version: 2.9.19+dfsg-2+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Debian PhotoTools Maintainers <pkg-phototools-devel@lists.alioth.debian.org> Changed-By: Utkarsh Gupta <utkarsh@debian.org> Closes: 985249 Changes: libpano13 (2.9.19+dfsg-2+deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the LTS team. * 850_f02459498cb4_Prevent_string_vulnerability_by_refusing.diff cherry-picked from 2.9.20 rc3: Fixes format string bug, passing along format strings in user specified output filename to printf. (Fixes: CVE-2021-20307) (Closes: #985249) Checksums-Sha1: 1b5f6f72da632bd035da4f28aa8a7c8e4df9d164 2251 libpano13_2.9.19+dfsg-2+deb9u1.dsc 13a52267ca7241520112f68b249b544c0b8bc403 1789584 libpano13_2.9.19+dfsg.orig.tar.xz 0f241182dd238dedf0412e3a9bd3e1e87151b307 10092 libpano13_2.9.19+dfsg-2+deb9u1.debian.tar.xz 5c970201965aae19a879e0a6a4b76281fff77c50 6155 libpano13_2.9.19+dfsg-2+deb9u1_source.buildinfo Checksums-Sha256: 6539dc6de6472aae4cd0d5fc99e2afefe3e7e02a4699280d580e97535a2818cd 2251 libpano13_2.9.19+dfsg-2+deb9u1.dsc a671b9a88ff49f3bc66533ee8a8739b0a982b96a17640e074b0db75fc878384e 1789584 libpano13_2.9.19+dfsg.orig.tar.xz 39783f86ba1b1ae8365d6a1cf55be63ecf7a0a19d6e1f23e312724b9c844e714 10092 libpano13_2.9.19+dfsg-2+deb9u1.debian.tar.xz c13b147d2ad18d01bfa89d57e53afbe9d70f8a613303d17b5147c945229c1f71 6155 libpano13_2.9.19+dfsg-2+deb9u1_source.buildinfo Files: b13b925fbea37b2175973532e5c8b2d7 2251 libs optional libpano13_2.9.19+dfsg-2+deb9u1.dsc 3ffaa2d223ec602d0eb8fca3e6c30447 1789584 libs optional libpano13_2.9.19+dfsg.orig.tar.xz 845dc6ed2a654c87c29e62fb1d588ca2 10092 libs optional libpano13_2.9.19+dfsg-2+deb9u1.debian.tar.xz 4c955427712e0254098bcb049d708919 6155 libs optional libpano13_2.9.19+dfsg-2+deb9u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJHBAEBCAAxFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAmB0cSITHHV0a2Fyc2hA ZGViaWFuLm9yZwAKCRCCPpZ2BsNLlnegD/9ORVlkJApWKEbIwgsm8QbRi0a+++2j PemwcelhETmu54CGYp7/qvuMeHdOR8dO6jqbyb4IpQjis2DSY0U9VJb1Or8nscLD GqMCTCZLbiDW0v8g8QDp6kj5LC2/C5oPPnN3mPbCmSIKuOtvEvSY5gzsQJ7RkZKs SUv4ss/0AzxcUPRuOqi+88z9F+K157WXoAmY7XHpMeD5FY3s/8B9lY9OeasQEvAp BP6fANh3358qtzVR2tAlOh64eJJCwU7iDclxjz2yth2McSCneRU8DR586EZMv347 5YMlkT2IINFABnRDygHTrQrIRHjvkRL/F1MYH1XVHZroYti3gywjGpWre1J+vGu6 wi6q4ymApnWvJL+pN9nfp/mZGvmzd0mfcugD/uPj6gJEX7ntGV4y55Hbtx/pHea1 EKYxnW1LTm+kHeFQ7cAiEoRVMRcxeP/9qoUIgpiz73ZKO4JSMF1eRQsaACExUr+Z BjRV99gakBL6w/Ce1Txc5LiAMVHn7l3RoJNBTfE1Jl7hU8J0M4s0F5uX1Qaz+48u kU+ArHWn8SdpeWEanvilvehgw39f7c/FfuKmyjizTNCvazon3igTMZidE0T816vP WF6CEoDmgcPCxSWNvJvghfGYcn+amPNxs+0npVpCDY+KRtkcD2BcHImCRyp0fUvW zavXbULuXMwpZQ== =Cqz/ -----END PGP SIGNATURE-----