Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted libsdl1.2 1.2.15+dfsg1-4+deb9u1 (source) into oldoldstable
Date: Sun, 31 Oct 2021 15:40:30 +0000
Signed by: Adrian Bunk <bunk@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 30 Oct 2021 23:36:46 +0300
Source: libsdl1.2
Binary: libsdl1.2debian libsdl1.2-dev
Architecture: source
Version: 1.2.15+dfsg1-4+deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Debian SDL packages maintainers <pkg-sdl-maintainers@lists.alioth.debian.org>
Changed-By: Adrian Bunk <bunk@debian.org>
Description:
 libsdl1.2-dev - Simple DirectMedia Layer development files
 libsdl1.2debian - Simple DirectMedia Layer
Changes:
 libsdl1.2 (1.2.15+dfsg1-4+deb9u1) stretch-security; urgency=medium
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2019-7572: Buffer over-read in IMA_ADPCM_nibble
     in audio/SDL_wave.c.
   * CVE-2019-7573: Heap-based buffer over-read in InitMS_ADPCM
     in audio/SDL_wave.c.
   * CVE-2019-7574: Heap-based buffer over-read in IMA_ADPCM_decode
     in audio/SDL_wave.c.
   * CVE-2019-7575: Heap-based buffer overflow in MS_ADPCM_decode
     in audio/SDL_wave.c.
   * CVE-2019-7576: Heap-based buffer over-read in InitMS_ADPCM
     in audio/SDL_wave.c.
   * CVE-2019-7577: Buffer over-read in SDL_LoadWAV_RW
     in audio/SDL_wave.c.
   * CVE-2019-7578: Heap-based buffer over-read in InitIMA_ADPCM
     in audio/SDL_wave.c.
   * CVE-2019-7635: Heap-based buffer over-read in Blit1to4
     in video/SDL_blit_1.c.
   * CVE-2019-7636: Heap-based buffer over-read in SDL_GetRGB
     in video/SDL_pixels.c.
   * CVE-2019-7637: Heap-based buffer overflow in SDL_FillRect
     in video/SDL_surface.c.
   * CVE-2019-7638: Heap-based buffer over-read in Map1toN
     in video/SDL_pixels.c.
   * CVE-2019-13616: Heap-based buffer over-read in BlitNtoN
     in video/SDL_blit_N.c.
Checksums-Sha1:
 716eeb8cf29eccaae69ea7920e61282878165e4b 2410 libsdl1.2_1.2.15+dfsg1-4+deb9u1.dsc
 435cf0c5d8ca292c72eeee7c272f333d82335d7e 2584144 libsdl1.2_1.2.15+dfsg1.orig.tar.xz
 e4a2d231b262b94df4b6ffc5ba9f2522d52b8d42 36684 libsdl1.2_1.2.15+dfsg1-4+deb9u1.debian.tar.xz
Checksums-Sha256:
 79daaacf7fff488725235555bb47bfa790ad60b76bdb6eb2d430e8f6e45c6898 2410 libsdl1.2_1.2.15+dfsg1-4+deb9u1.dsc
 5a34fcefedc99099413aedae1219ca1b846f68c92526c61a65f9e520e7bc9552 2584144 libsdl1.2_1.2.15+dfsg1.orig.tar.xz
 a205f7eb4b54668ad454d9bcad00a76944823aad23a1d832781bd72179446ba5 36684 libsdl1.2_1.2.15+dfsg1-4+deb9u1.debian.tar.xz
Files:
 3e9297c5313b7366b9bc0371d37c3f91 2410 libs optional libsdl1.2_1.2.15+dfsg1-4+deb9u1.dsc
 4618b1000682ad276f16df5ed4055428 2584144 libs optional libsdl1.2_1.2.15+dfsg1.orig.tar.xz
 cc732de62740854e6c2a7769262bddf8 36684 libs optional libsdl1.2_1.2.15+dfsg1-4+deb9u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAmF+tUEACgkQiNJCh6LY
mLEEzg/9EHi3hmoB4pFL8IdBehITUeHBtDcwY2WltdkHgWBwSo5arElFTcl9/im+
5dTn4tHa9Aw14i+k2j7m6C8ivnjRxI0e4Pscnt0+39IDRIKDG2bOrvsCZzwFEBSD
NUfX4SFHLJe5fzL8yQciF3JjPtWrhI6/GQhp+wDb+jkhmvNFnWBPcjze4m75dR4n
JHPDYXsHl+olC4QmpaDOg5chCt2+xZuwDolR3dFr6UDghDsRcYexG5xTD1GzuFNd
wQ0lx1UCH+R0en9EMvvaPN2A7LUx8AXBel5RskSDlvfrUrPlFtZypgGlYTnM4WHh
f2pAVwoPjPdN8qhY+FghhxD/G6zdrr7S0lgKaK/DbIkpLjXtMN/mZNf8cfZhOfIe
+IMWR5UHBYDTE3ZX86GP52LeLDvSu97LUA8xv7jZp1lozWLjiIg7hphnnU8Pnpsh
MvDKDuV8IkXNhTSkjw3Tgd9tCZ3O9lzoY5Rx+z/u3m1x5aajwWOIsXF4x4z17B6d
O6fVzRJD4OiHn/DUOO75nAzPj9AhHSHRJar5958YW9+wS/5hYS9oI+zwiiyELxCD
w5ZYl2prdXnIzG0XSMq3tODan+7RcnIF0K7fNyefWKCob6PVOhFnCa1/7n9HT+Dj
H2NgcJyzIIygEcJoMRj3xSTJ6r2akSHf6Ou5LL/GT5Jbz9WyWSU=
=/isE
-----END PGP SIGNATURE-----
News for package libsdl1.2
