-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 29 Apr 2017 18:35:06 +0000 Source: libpodofo Binary: libpodofo-dev libpodofo-utils libpodofo0.9.0 Architecture: source amd64 Version: 0.9.0-1.1+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Oleksandr Moskalenko <malex@debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: libpodofo-dev - PoDoFo development files libpodofo-utils - PoDoFo utilities libpodofo0.9.0 - PoDoFo - library to work with the PDF file format Changes: libpodofo (0.9.0-1.1+deb7u1) wheezy-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix CVE-2017-7379, CVE-2015-8981, CVE-2017-5852, CVE-2017-5853, CVE-2017-5854, CVE-2017-5886 and CVE-2017-6844. Several heap-based buffer overflows, integer overflows and NULL pointer dereferences have been discovered in libpodofo that allow remote attackers to cause a denial of service (application crash) or other unspecified impact via a crafted PDF document. Checksums-Sha1: 53bb9f1f091933fe9d19e14ee6ab4bb1b23cec88 2105 libpodofo_0.9.0-1.1+deb7u1.dsc 981e08ac853e6461cf850359a8d8939508787e6f 1079670 libpodofo_0.9.0.orig.tar.gz 17886c30f68dba7f21785caa157a011f46c69091 14628 libpodofo_0.9.0-1.1+deb7u1.debian.tar.gz 324d275bca56da65d0725c46ca1ab6f27579d41d 201424 libpodofo-dev_0.9.0-1.1+deb7u1_amd64.deb 54ff1c9bd8b7f7388b6f45f866f7971d445ae780 317152 libpodofo-utils_0.9.0-1.1+deb7u1_amd64.deb 75f94561af4855f0508b1d6dcf766b9ea53aee2c 607864 libpodofo0.9.0_0.9.0-1.1+deb7u1_amd64.deb Checksums-Sha256: d870007f76ccc5e4dea892cb51e0f2a5d88c1eb089570eb818bdbba26f7edc0f 2105 libpodofo_0.9.0-1.1+deb7u1.dsc 560884b7bd277f0bee0707610ab3d935b77455babab3dae2a14288d4355b286c 1079670 libpodofo_0.9.0.orig.tar.gz 9101dfc84d159a5a2b3140efb53c944c774e467ecc8f58d14c3fc95a9da3aefc 14628 libpodofo_0.9.0-1.1+deb7u1.debian.tar.gz a1c6de3d189ed4b4fd9d6384e83d6890e9a25bb18ccb02d48e34870c4504f3e6 201424 libpodofo-dev_0.9.0-1.1+deb7u1_amd64.deb 64f49ae03d095393e5cfd7b047b74f441b6f98f61fe60003d29ca1111b213db3 317152 libpodofo-utils_0.9.0-1.1+deb7u1_amd64.deb 55f2e739e35718c3152099c06a38d30db8d29ff94c58e823b485e50309307111 607864 libpodofo0.9.0_0.9.0-1.1+deb7u1_amd64.deb Files: 24618cc13e8d90edca652623d471ac36 2105 libdevel extra libpodofo_0.9.0-1.1+deb7u1.dsc 2a9ac8cbb5e6575dbc00f083ad8996fb 1079670 libdevel extra libpodofo_0.9.0.orig.tar.gz 6dc419cdee89beb79ab1a0ae742c85f8 14628 libdevel extra libpodofo_0.9.0-1.1+deb7u1.debian.tar.gz 2c44584957c90457d3f0be2b96ee9fd7 201424 libdevel extra libpodofo-dev_0.9.0-1.1+deb7u1_amd64.deb e5b987158a23e36f51b67f0aee9a14ad 317152 libdevel extra libpodofo-utils_0.9.0-1.1+deb7u1_amd64.deb 47506d301ae66cfa3f171249ef5c907d 607864 libs extra libpodofo0.9.0_0.9.0-1.1+deb7u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAlkE61RfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkC1cQALBo2Le6OFSY9c3VyQvfkgkeHnA4uFHJlDIM isSE5X5w99QyssrkOz0gTxBSDSO7DwKNxxGXjJjSHr/SJsVdNIux+wsskXKBElnm sZqjzMtg+dozEsgWEDJs52r5OIuTVfpGCjlCKj3isEbNiRS3WUmFfvBqXMt1d9Q7 HDV2IKAqB+HCiX1vP08kpNZSO2Hbp3d3/67rnsYaSzSCvRbHX9nPuiCRNwVsy9Yv jt/syB8TdyuDw6io3H8eaA1dQaYwlegI/cxsfrWmPyZfbTkapgoC+WjLGlA9qOQ3 E69EkXSjAVDuDzMXQabT84MIh//l7IhDflEbrDYOUS+ZyY4n66uC/0xC77JDixoJ AL87/EBI2UTa2cd3kCGwdSoaZLdQDgLK+7dTk/xRDGyAr/SB9aiiTi89z6Qnc4Wl aGPGkI8X8i6nXgnwVgRZFaiq9CG/oYltrQ/vlw1JkYaG8NhroFiG5lE629DTTrWC wgl3bWePsS3hmwv0cVyIdUSSuKXid/a81reTaplYrhllFFcOyO6qpjIFpjlWtPEC I/V4jl+W6rMAhzV3VSfZoVusR3EztkyuVsDYq2seKXpuAe6tsoUSR/uQEklL0CZG iqNnrxjUo9bMbJtAhcsJJiE05nrrxaP8DrsIOsqi9VH/4P923ssjDwLNmKAaG+7x NpKz6BqM =hPhl -----END PGP SIGNATURE-----
