Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted opensc 0.25.1-2.1 (source) into unstable
Date: Mon, 23 Dec 2024 08:50:52 +0000
Signed by: <bage@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 22 Dec 2024 17:47:53 +0100
Source: opensc
Architecture: source
Version: 0.25.1-2.1
Distribution: unstable
Urgency: medium
Maintainer: Debian OpenSC Maintainers <pkg-opensc-maint@lists.alioth.debian.org>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Closes: 1082853 1082859 1082860 1082861 1082862 1082863 1082864
Changes:
 opensc (0.25.1-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating
     key. (Closes: #1082853)
   * Fix CVE-2024-45615: Usage of uninitialized values in libopensc and
     pkcs15init. (Closes: #1082859)
   * Fix CVE-2024-45616: Uninitialized values after incorrect check or usage of
     APDU response values in libopensc. (Closes: #1082860)
   * Fix CVE-2024-45617: Uninitialized values after incorrect or missing
     checking return values of functions in libopensc. (Closes: #1082861)
   * Fix CVE-2024-45618: Uninitialized values after incorrect or missing
     checking return values of functions in pkcs15init. (Closes: #1082862)
   * Fix CVE-2024-45619: Incorrect handling length of buffers or files in
     libopensc. (Closes: #1082863)
   * Fix CVE-2024-45620: Incorrect handling length of buffers or files in
     pkcs15init. (Closes: #1082864)
Checksums-Sha1:
 61f0904505bfe6d6239b99c41dfd951c04863506 2020 opensc_0.25.1-2.1.dsc
 ad6dbb32320091ccc60db1c8a832713442ac24ec 25832 opensc_0.25.1-2.1.debian.tar.xz
 7e4a562e23cdaf3cb0dc553f01ce5fe7f0cb28ca 6824 opensc_0.25.1-2.1_source.buildinfo
Checksums-Sha256:
 b7651dee319475fe1819845435c129fa1ba2e32b9d8d5ceea2abf1545bd65ab9 2020 opensc_0.25.1-2.1.dsc
 bbddc3e8f15ed86e4758c80ff9441daedd14d6f153e2f07c5402e332919fbe52 25832 opensc_0.25.1-2.1.debian.tar.xz
 c384d36dd9386cefee21f88b24146febe49e822472f959e9e60bb33f5f006ccd 6824 opensc_0.25.1-2.1_source.buildinfo
Files:
 a3d4cb999694b72457c5d0105c34e746 2020 utils optional opensc_0.25.1-2.1.dsc
 de98962aa43e59ddb23c88806a7a63be 25832 utils optional opensc_0.25.1-2.1.debian.tar.xz
 6a220f17260997b343baed297318e7c0 6824 utils optional opensc_0.25.1-2.1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=BLyt
-----END PGP SIGNATURE-----
News for package opensc
