Debian Package Tracker

From: Jonathan Dowland <jmtd@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted lhasa 0.3.1-1 (source amd64) into unstable
Date: Thu, 31 Mar 2016 21:50:33 +0000
Signed by: Jon Dowland <jmtd@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 31 Mar 2016 21:01:32 +0100
Source: lhasa
Binary: lhasa liblhasa-dev liblhasa0
Architecture: source amd64
Version: 0.3.1-1
Distribution: unstable
Urgency: high
Maintainer: Jonathan Dowland <jmtd@debian.org>
Changed-By: Jonathan Dowland <jmtd@debian.org>
Description:
 lhasa      - lzh archive decompressor
 liblhasa-dev - lzh decompression library - development files
 liblhasa0  - lzh archive decompression library
Changes:
 lhasa (0.3.1-1) unstable; urgency=high
 .
   * New upstream release:
 .
      * This release fixes an integer underflow vulnerability in the
        code for doing LZH level 3 header decodes (TALOS-CAN-0095).
        Thanks go to Marcin Noga and Regina Wilson of Cisco TALOS for
        reporting this vulnerability.
Checksums-Sha1:
 82b0e84412f46de161409d77b47966813d6c4cd5 1984 lhasa_0.3.1-1.dsc
 cc2cad80855d4caf07077fa24d852fc2684de7ac 2015072 lhasa_0.3.1.orig.tar.xz
 6ad6be6acac9dddbd147e6d0fb988ede92500a15 3552 lhasa_0.3.1-1.debian.tar.xz
 23bd3f9984d3fe8a56c0dc0699954d3a0674b295 23994 lhasa-dbgsym_0.3.1-1_amd64.deb
 349a531dd25d9b9d315b37280c658b138a48fe22 17588 lhasa_0.3.1-1_amd64.deb
 4fa9642a000f46c43c8ba9c27076d698d51b1504 28500 liblhasa-dev_0.3.1-1_amd64.deb
 6a16b88acb789dde147c7be8a7bb380e97316030 61766 liblhasa0-dbgsym_0.3.1-1_amd64.deb
 d2930dd8de1e0bdb0c924b89745a57872d24793a 22226 liblhasa0_0.3.1-1_amd64.deb
Checksums-Sha256:
 8737c4b025b982691cabade6acac9bb5ff682ccc7bdba8cfb3ba4169c3ca58d0 1984 lhasa_0.3.1-1.dsc
 fe7b76fa4359e42c80cb11537f8769da2f5d6c479f41717394d9409d46aa983d 2015072 lhasa_0.3.1.orig.tar.xz
 601079c8e39f1c4121cbda67c019a5c7cfaf6db48f4b5d7e466a6db35284af79 3552 lhasa_0.3.1-1.debian.tar.xz
 e3b0612a388626b774009349eef60c6a89e1deabade0cbe3bf45b4d2e5d29b02 23994 lhasa-dbgsym_0.3.1-1_amd64.deb
 1a2244bad9f2b5cdb5c991270a7928e94783243db9f7809afe5abf0d0eb0f67f 17588 lhasa_0.3.1-1_amd64.deb
 583b6daf2469b310a0cae5534979ce24d6d4531efdf3ce194f29795f234675c7 28500 liblhasa-dev_0.3.1-1_amd64.deb
 6d9abc7e1223aaee1edd3cc2a6c76265d05b5906b609dc37059c3271d3bd08c2 61766 liblhasa0-dbgsym_0.3.1-1_amd64.deb
 f51ca784e38620af778323422096f1244296967991890fd3af0643d39accaa41 22226 liblhasa0_0.3.1-1_amd64.deb
Files:
 ff83a8ffef71ed94ad5e6f5177bfca9d 1984 utils optional lhasa_0.3.1-1.dsc
 0955c5d74ac925ea648a7fb733edc07c 2015072 utils optional lhasa_0.3.1.orig.tar.xz
 bc02bab3b48b1e53e4280e9fd31fbbf6 3552 utils optional lhasa_0.3.1-1.debian.tar.xz
 2b5ddd39e3988a28ffa16a457abb5258 23994 debug extra lhasa-dbgsym_0.3.1-1_amd64.deb
 4074c75e6367ad01e1f0b4a09f0b8299 17588 utils optional lhasa_0.3.1-1_amd64.deb
 b07cbb403233431689caa8f077252d79 28500 libdevel optional liblhasa-dev_0.3.1-1_amd64.deb
 e6d90d688646ef70533972abb600450c 61766 debug extra liblhasa0-dbgsym_0.3.1-1_amd64.deb
 2274b514b14e56134d95a63c0037b2be 22226 libs optional liblhasa0_0.3.1-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=NB4C
-----END PGP SIGNATURE-----
News for package lhasa
