Debian Package Tracker

From: <dak@security.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted ocaml 3.12.1-4+deb7u1 (source i386 all) into oldstable
Date: Wed, 11 May 2016 18:30:20 +0000
Signed by: Thorsten Alteholz <debian@alteholz.de>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 11 May 2016 19:03:02 +0200
Source: ocaml
Binary: ocaml-nox camlp4 camlp4-extra ocaml ocaml-base-nox ocaml-base ocaml-native-compilers ocaml-source ocaml-interp ocaml-compiler-libs ocaml-mode
Architecture: source i386 all
Version: 3.12.1-4+deb7u1
Distribution: wheezy-security
Urgency: high
Maintainer: Debian OCaml Maintainers <debian-ocaml-maint@lists.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description: 
 camlp4     - Pre Processor Pretty Printer for OCaml
 camlp4-extra - Pre Processor Pretty Printer for OCaml - extras
 ocaml      - ML language implementation with a class-based object system
 ocaml-base - Runtime system for OCaml bytecode executables
 ocaml-base-nox - Runtime system for OCaml bytecode executables (no X)
 ocaml-compiler-libs - OCaml interpreter and standard libraries
 ocaml-interp - OCaml interactive interpreter and standard libraries
 ocaml-mode - major mode for editing Objective Caml in Emacs
 ocaml-native-compilers - Native code compilers of the OCaml suite (the .opt ones)
 ocaml-nox  - ML implementation with a class-based object system (no X)
 ocaml-source - Sources for Objective Caml
Changes: 
 ocaml (3.12.1-4+deb7u1) wheezy-security; urgency=high
 .
   * Non-maintainer upload by the Wheezy LTS Team.
   * CVE-2015-8869
     OCaml versions 4.02.3 and earlier have a runtime bug that,
     on 64-bit platforms, causes sizes arguments to an internal
     memmove call to be sign-extended from 32 to 64-bits before
     being passed to the memmove function.
     This leads arguments between 2GiB and 4GiB to be interpreted
     as larger than they are (specifically, a bit below 2^64),
     causing a buffer overflow.
     Arguments between 4GiB and 6GiB are interpreted as 4GiB smaller
     than they should be, causing a possible information leak.
Checksums-Sha1: 
 d220b55d063e1c234283f880ab0a69c3bd190b1d 2789 ocaml_3.12.1-4+deb7u1.dsc
 05125da055d39dd6fe8fe5c0155b2e9f55c10dfd 3660473 ocaml_3.12.1.orig.tar.gz
 f99292165a854d34552be00f056b450467677514 55031 ocaml_3.12.1-4+deb7u1.debian.tar.gz
 cc04ff2aec8f49f275ff9366182bf794adaf73ba 7505236 ocaml-nox_3.12.1-4+deb7u1_i386.deb
 4a74f84d8f1c0cb925c2141f70e0de2179b66fc0 18457704 camlp4_3.12.1-4+deb7u1_i386.deb
 c983c1d6c0f502ec908e81d901f0efdef8269b1e 17594566 camlp4-extra_3.12.1-4+deb7u1_i386.deb
 acd7e0e58f573191e867a45ff2640e2a885f6cfc 2163014 ocaml_3.12.1-4+deb7u1_i386.deb
 1fa9ad6316223faa76db80bf3e718d02a98121b3 648208 ocaml-base-nox_3.12.1-4+deb7u1_i386.deb
 657a4b08838061677c5c35341a20e9a68517d76e 126398 ocaml-base_3.12.1-4+deb7u1_i386.deb
 a87445e4054c6d6f962083d2f55151d475c51263 2812854 ocaml-native-compilers_3.12.1-4+deb7u1_i386.deb
 89504395efd44bebee8222756402c57f3473ff01 3016698 ocaml-source_3.12.1-4+deb7u1_all.deb
 2f3bff4bb770a28f5a1dedb9eaf62c216c4bc175 319090 ocaml-interp_3.12.1-4+deb7u1_i386.deb
 59308564eb43244da84b4a343d1f75eb89ab1235 1199360 ocaml-compiler-libs_3.12.1-4+deb7u1_i386.deb
 33dbc32cf3c16391737a690a6216d36d1a2a318c 118096 ocaml-mode_3.12.1-4+deb7u1_all.deb
Checksums-Sha256: 
 79d371281dedfe82535aee4a906fd904f8e46b3ef8c96a0c72eeb683798a4861 2789 ocaml_3.12.1-4+deb7u1.dsc
 4f81ab86258be0eea1507dd5338c8670490f8616249821e731f8ac1c64caa4a7 3660473 ocaml_3.12.1.orig.tar.gz
 1c563d37a3240b896dc852dcdc24d49da8638ec1781f492e3243da0f857550d5 55031 ocaml_3.12.1-4+deb7u1.debian.tar.gz
 cf6701d07a1a4c563d91700220efa34b154becef98f091ee41f6c4f25f6f640d 7505236 ocaml-nox_3.12.1-4+deb7u1_i386.deb
 a4af8ecd33711c340d5fa97ee4acb973714e29ebad92f0493a58ed3650503331 18457704 camlp4_3.12.1-4+deb7u1_i386.deb
 bbed26810fa0db8fc74fa764f3e7dd016f2eccc4c9f20c930bf1b45e88da1c68 17594566 camlp4-extra_3.12.1-4+deb7u1_i386.deb
 9ee6d1731326bd6120ee32e3a818b399a42d0b50541caf821d7ac7e84d92abb7 2163014 ocaml_3.12.1-4+deb7u1_i386.deb
 b1afda50216c49bf115b66ae1fb55b09fbfe2c9a1915ea4e06fb25ebe3871205 648208 ocaml-base-nox_3.12.1-4+deb7u1_i386.deb
 e15786ec358e60b1ca5284de80fcacc2a81a2fc393ec91156124c7c5c6ccc3ca 126398 ocaml-base_3.12.1-4+deb7u1_i386.deb
 6c5f930b52cc108adf42f91c3ab408a11bf2b680adcefadf4eb00088947431d1 2812854 ocaml-native-compilers_3.12.1-4+deb7u1_i386.deb
 d4c214322f039bc4c58d9a77a4a8086bf2b9a1d3f48cd9426a3cba717f349bbb 3016698 ocaml-source_3.12.1-4+deb7u1_all.deb
 713e9359e80e466c86b5c04855f48cfcdc482d20526ce424230fae2777641bb1 319090 ocaml-interp_3.12.1-4+deb7u1_i386.deb
 a3e2827ee45b95e1dc0780d08336ffb414876a5ddf7ea9f1528ba8c8e10b1410 1199360 ocaml-compiler-libs_3.12.1-4+deb7u1_i386.deb
 11c7e50dd3f4efba9c582147db420e8167b18f5e0a9be17d1e83112a9b2c9354 118096 ocaml-mode_3.12.1-4+deb7u1_all.deb
Files: 
 2bd158e6bcc753c00c8fcb5d5c3cf4e5 2789 ocaml optional ocaml_3.12.1-4+deb7u1.dsc
 814a047085f0f901ab7d8e3a4b7a9e65 3660473 ocaml optional ocaml_3.12.1.orig.tar.gz
 48750ed722f92677a2a6a010d1ea802c 55031 ocaml optional ocaml_3.12.1-4+deb7u1.debian.tar.gz
 658ed4335677d858419c492e47f761a2 7505236 ocaml optional ocaml-nox_3.12.1-4+deb7u1_i386.deb
 c7295e2803e00e6f1f91aec9970ce21d 18457704 ocaml optional camlp4_3.12.1-4+deb7u1_i386.deb
 40d73322a4daa7380d84e252b47516a8 17594566 ocaml optional camlp4-extra_3.12.1-4+deb7u1_i386.deb
 5dd822c187e73936da6af2bcc22f2de3 2163014 ocaml optional ocaml_3.12.1-4+deb7u1_i386.deb
 85889da99590daab5a2f5d2af7cca02a 648208 ocaml optional ocaml-base-nox_3.12.1-4+deb7u1_i386.deb
 162b4d275ea1d25ecf4c78b5e5621ed1 126398 ocaml optional ocaml-base_3.12.1-4+deb7u1_i386.deb
 61a46824620323b6077f415c8d2c910d 2812854 ocaml optional ocaml-native-compilers_3.12.1-4+deb7u1_i386.deb
 bb4db721f40d6a726bf55cf691f5503a 3016698 ocaml optional ocaml-source_3.12.1-4+deb7u1_all.deb
 18a58bdceeb6f05feb2c67e4e8a94f32 319090 ocaml optional ocaml-interp_3.12.1-4+deb7u1_i386.deb
 2bbe96f392541953b083d5708b7e3370 1199360 ocaml optional ocaml-compiler-libs_3.12.1-4+deb7u1_i386.deb
 caf577771b51140d2c298ec3de0221a7 118096 ocaml optional ocaml-mode_3.12.1-4+deb7u1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=mOC4
-----END PGP SIGNATURE-----
News for package ocaml
