Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted cups-filters 1.28.17-7 (source) into unstable
Date: Thu, 20 Nov 2025 17:49:14 +0000
Signed by: Thorsten Alteholz <alteholz@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 20 Nov 2025 10:45:05 +0100
Source: cups-filters
Architecture: source
Version: 1.28.17-7
Distribution: unstable
Urgency: medium
Maintainer: Debian Printing Team <debian-printing@lists.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Closes: 1120698 1120704
Changes:
 cups-filters (1.28.17-7) unstable; urgency=medium
 .
   * CVE-2025-64503
     fix an out of bounds write vulnerability when processing crafted
     PDF files containing a large 'Mediabox' value.
     (Closes: #1120698)
 .
   * CVE-2025-57812
     fix an out of bounds read/write vulnerability in the processing
     of TIFF image files.
     (Closes: #1120704)
 .
   * CVE-2025-64524
     fix infinite loop with crafted input raster file, that resuls
     into a heap buffer overflow
Checksums-Sha1:
 9682e5db86c5395d6eb1008883c7b7ee965b07c9 3028 cups-filters_1.28.17-7.dsc
 916cc1ebc2533a745b8a04233700d559ab91ed87 1511993 cups-filters_1.28.17.orig.tar.gz
 1f58d66db18889096e69f66b4c80245da8bdf08c 90912 cups-filters_1.28.17-7.debian.tar.xz
 66ec4fddd62c23e3bc27f654be1075af2aed163b 15299 cups-filters_1.28.17-7_amd64.buildinfo
Checksums-Sha256:
 79d979fb2f5b4524e760d982cbd01e9a46a8ec668d2bc40cba64de99e4c5ea36 3028 cups-filters_1.28.17-7.dsc
 ade6e4327e7eba1646881aaa4ca82a0df5d44e3b3b16326a5d3f04e975ab595c 1511993 cups-filters_1.28.17.orig.tar.gz
 918e9f1c40bae1046e8c6aa67df49984d9bc4fae6154f86fb91a727b485527ef 90912 cups-filters_1.28.17-7.debian.tar.xz
 3eb690eb6ec418f927bf062f057ecd2e7ddbde76a00754923b258df62f7cdb76 15299 cups-filters_1.28.17-7_amd64.buildinfo
Files:
 c2086ac10079b8e70c5da6dc5a061d18 3028 net optional cups-filters_1.28.17-7.dsc
 389aa99780c9b5ac012fc4b2d29e5cba 1511993 net optional cups-filters_1.28.17.orig.tar.gz
 98a24ed057189baafb542b2092b76920 90912 net optional cups-filters_1.28.17-7.debian.tar.xz
 761835a99ffe44a842ad84de70fc805f 15299 net optional cups-filters_1.28.17-7_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=M6cv
-----END PGP SIGNATURE-----
News for package cups-filters
