Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted opensc 0.19.0-1+deb10u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Date: Sat, 05 Mar 2022 22:47:32 +0000
Signed by: Adrian Bunk <bunk@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 23 Jan 2022 19:32:38 +0200
Source: opensc
Architecture: source
Version: 0.19.0-1+deb10u1
Distribution: buster
Urgency: medium
Maintainer: Debian OpenSC Maintainers <pkg-opensc-maint@lists.alioth.debian.org>
Changed-By: Adrian Bunk <bunk@debian.org>
Closes: 939668 939669 947383 972035 972036 972037
Changes:
 opensc (0.19.0-1+deb10u1) buster; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2019-15945: Out-of-bounds access of an ASN.1 Bitstring.
     (Closes: #939668)
   * CVE-2019-15946: Out-of-bounds access of an ASN.1 Octet string.
     (Closes: #939669)
   * CVE-2019-19479: Incorrect read operation in the Setec driver.
     (Closes: #947383)
   * CVE-2019-20792: Double free in the Coolkey driver.
   * CVE-2020-26570: Heap-based buffer overflow in the Oberthur driver.
     (Closes: #972037)
   * CVE-2020-26571: Stack-based buffer overflow in the GPK driver.
     (Closes: #972036)
   * CVE-2020-26572: Stack-based buffer overflow in the TCOS driver.
     (Closes: #972035)
Checksums-Sha1:
 3a53c24cb586c7b2b492d96a666c472ecc5f7309 2159 opensc_0.19.0-1+deb10u1.dsc
 0ace619a33f987c91e79dabed5225d75caa574c3 15804 opensc_0.19.0-1+deb10u1.debian.tar.xz
Checksums-Sha256:
 bdd26d784e0d468fa737a97b89bdbbfd2f5ba12e2440daeee57f1ad25707fe34 2159 opensc_0.19.0-1+deb10u1.dsc
 bbf753a5f51a2d32e36eade4ea7e891c70efd226f16d3cef20ab241fd0068ee3 15804 opensc_0.19.0-1+deb10u1.debian.tar.xz
Files:
 f3fc84e38865a276a732594b76a91678 2159 utils optional opensc_0.19.0-1+deb10u1.dsc
 c419dbdf44570db77011ea887af40c19 15804 utils optional opensc_0.19.0-1+deb10u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=t5fd
-----END PGP SIGNATURE-----

News for package opensc