Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted azure-uamqp-python 1.6.9-2 (source) into unstable
Date: Wed, 17 Apr 2024 12:34:24 +0000
Signed by: Thomas Goirand <zigo@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 17 Apr 2024 14:08:51 +0200
Source: azure-uamqp-python
Architecture: source
Version: 1.6.9-2
Distribution: unstable
Urgency: high
Maintainer: Debian Python Team <team+python@tracker.debian.org>
Changed-By: Thomas Goirand <zigo@debian.org>
Closes: 1068457
Changes:
 azure-uamqp-python (1.6.9-2) unstable; urgency=high
 .
   * Team upload.
   * CVE-2024-29195: An attacker can cause an integer wraparound or under-
     allocation or heap buffer overflow due to vulnerabilities in parameter
     checking mechanism, by exploiting the buffer length parameter in Azure C
     SDK, which may lead to remote code execution. Applied upstream patch:
     CVE-2024-29195_Add-malloc-size-checks.patch (Closes: #1068457).
Checksums-Sha1:
 da0868c3083fdc4eae499788754d3241fa30f678 2316 azure-uamqp-python_1.6.9-2.dsc
 b70fda15971f4a2ebc0ef8298c1857b886fddbb6 11624 azure-uamqp-python_1.6.9-2.debian.tar.xz
 840627ba390b18bef514eaef014f72660a0a173d 9095 azure-uamqp-python_1.6.9-2_amd64.buildinfo
Checksums-Sha256:
 09039d63c22f81849fbbafe413dc423381ee019b47c68bffa765e6e799cf4a57 2316 azure-uamqp-python_1.6.9-2.dsc
 b0eddda10d4e1197393603e560db78c5caa27cc58d2d91d8fefeddc4243c5bd5 11624 azure-uamqp-python_1.6.9-2.debian.tar.xz
 31fd787e426531456f80a953e83339c36281350bf0073dbaad81dd557db097f6 9095 azure-uamqp-python_1.6.9-2_amd64.buildinfo
Files:
 a19610664fc8fd4d090699f9b03f1062 2316 python optional azure-uamqp-python_1.6.9-2.dsc
 5140a3fdbb875f8eb29ae443e471c41b 11624 python optional azure-uamqp-python_1.6.9-2.debian.tar.xz
 ab7997a1ad2913b7afe38df2fe7582bd 9095 python optional azure-uamqp-python_1.6.9-2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=oTDG
-----END PGP SIGNATURE-----

News for package azure-uamqp-python