-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 06 Sep 2012 15:38:44 -0500 Source: mcrypt Binary: mcrypt Architecture: source i386 Version: 2.6.8-1.1 Distribution: unstable Urgency: high Maintainer: RISKO Gergely <risko@debian.org> Changed-By: Raphael Geissert <geissert@debian.org> Description: mcrypt - Replacement for old unix crypt(1) Changes: mcrypt (2.6.8-1.1) unstable; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2012-4409: buffer overflow when decrypting a file with a too long salt. * No id: format-string attacks via file name arguments and possibly others. Checksums-Sha1: 07e03bf2745e62d7652dbfc93cf31e9bdcd911e5 1241 mcrypt_2.6.8-1.1.dsc 749f407c4e056709deae255b744f243414e38556 430789 mcrypt_2.6.8-1.1.diff.gz f4fc414647ecddeb5e117e224e657c8ebbc1b869 71442 mcrypt_2.6.8-1.1_i386.deb Checksums-Sha256: a41dae50a21be8ddd2b559ae0f84ec1a6e66b43db0a4376f5a4b696d07cbde65 1241 mcrypt_2.6.8-1.1.dsc 0425d973ef6b995825e498375222c41dd00afe7b66dd8fb3c025e033b8516ee9 430789 mcrypt_2.6.8-1.1.diff.gz c6df49fa923f193d68e58be9dfd95c32a2b70560c08361ac23fbb60bfd13e8da 71442 mcrypt_2.6.8-1.1_i386.deb Files: e93f284e07c16548518af9fcc9eacbe4 1241 utils optional mcrypt_2.6.8-1.1.dsc 199e6058a4581921b218b359445b61c2 430789 utils optional mcrypt_2.6.8-1.1.diff.gz d19725a8b64938674928e5b3e604f4cb 71442 utils optional mcrypt_2.6.8-1.1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlBJD0UACgkQYy49rUbZzloE5ACfe+H3C3HiTGeR5xE1SKC4rPlN k0AAn0oRcXVajWhsKjfCPvlRbambZ2+m =si6w -----END PGP SIGNATURE-----
