Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted http-parser 2.8.1-1+deb10u3 (source) into oldstable
Date: Mon, 05 Dec 2022 09:10:23 +0000
Signed by: Utkarsh Gupta <utkarsh@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 05 Dec 2022 14:12:02 +0530
Source: http-parser
Architecture: source
Version: 2.8.1-1+deb10u3
Distribution: buster-security
Urgency: high
Maintainer: Christoph Biedl <debian.axhn@manchmal.in-ulm.de>
Changed-By: Utkarsh Gupta <utkarsh@debian.org>
Closes: 1016690
Changes:
 http-parser (2.8.1-1+deb10u3) buster-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2020-8287: Prevent a potential HTTP request smuggling vulnerability
     caused by http-parser allowing two copies of a header field in a HTTP
     request. (Closes: #1016690)
Checksums-Sha1:
 44f0c45d9e0228418089435824f0dcb041853b0c 2037 http-parser_2.8.1-1+deb10u3.dsc
 e980b680be6f31ea1f1a6d849d629248b5a9043e 50731 http-parser_2.8.1.orig.tar.gz
 c58028b3cb44ad4430134c258279ff95b1ed96c3 9740 http-parser_2.8.1-1+deb10u3.debian.tar.xz
 cb87eb166926fc615ab2bd93f2403def8802971d 6167 http-parser_2.8.1-1+deb10u3_source.buildinfo
Checksums-Sha256:
 677292ba18aa1c613f77f1f31447ab1daeb0766ba12ec85fc19226554e2dcb26 2037 http-parser_2.8.1-1+deb10u3.dsc
 51615f68b8d67eadfd2482decc63b3e55d749ce0055502bbb5b0032726d22d96 50731 http-parser_2.8.1.orig.tar.gz
 c87e3a11d9646f247525811dfad7db94bd08eb7e5b9a1662e1aa936e3fa0ba80 9740 http-parser_2.8.1-1+deb10u3.debian.tar.xz
 5d2aca9641fec529b604078fdc089bfffb24d8dc12867ee0e2e64585eadb7673 6167 http-parser_2.8.1-1+deb10u3_source.buildinfo
Files:
 11475ae020bd130ab24ffd900f1c53a3 2037 libs optional http-parser_2.8.1-1+deb10u3.dsc
 cb8cbe17d68c4101eebe80229e32efdb 50731 libs optional http-parser_2.8.1.orig.tar.gz
 ab55544e98a603238cc42e6f25d56c66 9740 libs optional http-parser_2.8.1-1+deb10u3.debian.tar.xz
 56fe8d6d4d026616fc1753e0a8c47551 6167 libs optional http-parser_2.8.1-1+deb10u3_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=LcJ5
-----END PGP SIGNATURE-----

News for package http-parser