-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 29 Jan 2015 18:39:52 +0100 Source: unzip Binary: unzip Architecture: source amd64 Version: 6.0-15 Distribution: unstable Urgency: medium Maintainer: Santiago Vila <sanvila@debian.org> Changed-By: Santiago Vila <sanvila@debian.org> Description: unzip - De-archiver for .zip files Closes: 776589 Changes: unzip (6.0-15) unstable; urgency=medium . * Fix heap overflow. Ensure that compressed and uncompressed block sizes match when using STORED method in extract.c. Patch taken from Ubuntu. Thanks a lot. Closes: #776589. For reference, this is CVE-2014-9636. Checksums-Sha1: 2d038d4bcd7d137899646ebc9274fc3749e84961 1311 unzip_6.0-15.dsc 8a049e0d903f58d439aa7e0f6c45afeedec4022a 14140 unzip_6.0-15.debian.tar.xz 1aa126a6d12994460bad85eca1f69671271cc6fc 161076 unzip_6.0-15_amd64.deb Checksums-Sha256: e0b97d254cb2261dd93df9a461d736472bdc082216d7f0ee5f99ed71263d38cf 1311 unzip_6.0-15.dsc a33731552f52583e82d40465f1a6496ff4df3a5f9c1c33862a02b2d293561fcd 14140 unzip_6.0-15.debian.tar.xz 7f76a2a59a09afa7910eead74f0ed51d00392fcbc4ef1a73e5bd45cbb527bf6c 161076 unzip_6.0-15_amd64.deb Files: ad5d13642adb55aa422af32d1c5ddde7 1311 utils optional unzip_6.0-15.dsc 42a3daaecd6d4af4ea47c6668bb949a1 14140 utils optional unzip_6.0-15.debian.tar.xz 7ec9a16aa0cfafa1de6e84227869952a 161076 utils optional unzip_6.0-15_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJUynFiAAoJEEHOfwufG4symBIH/3dbm/Ovx1V9JP05DNHBlc09 j1KxyFK4U5EpWyCZ31H5Sc2tQ54NVeVocEsCFm9bj1z1KCyD/r+B9/DxFTJqgi6c sl/fE/gw4MVX848mWEADYKsEZAkDCgzf6a+w3Gy9bwGP7SYMzKdA54T9nsQ6O6zQ Z7DoLk2tCP2jL52yuZEf75Zl80Cl1isQ3L2rNcIl6lB+0bbJCgwolnQhZ3r23mKX jjku7UP1F/AQGMIdOEyC2d5/VHvfgmNerJCYLiVwNKuz0FBoE976kPLDsyyW+Ul+ HRMdJRf/HXEIfgEJ+Z8plUF3aheavfTpagNE85zj079zCJ5mlX514ACQBplOiGo= =D4fT -----END PGP SIGNATURE-----
