Debian Package Tracker

From: Thorsten Alteholz <debian@alteholz.de>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted tnef 1.4.9-1+deb7u3 (source amd64) into oldstable
Date: Mon, 29 May 2017 13:40:11 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 29 May 2017 14:03:02 +0200
Source: tnef
Binary: tnef
Architecture: source amd64
Version: 1.4.9-1+deb7u3
Distribution: wheezy-security
Urgency: high
Maintainer: Kevin Coyner <kcoyner@debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 tnef       - Tool to unpack MIME application/ms-tnef attachments
Changes:
 tnef (1.4.9-1+deb7u3) wheezy-security; urgency=high
 .
   * Non-maintainer upload by the Wheezy LTS Team.
   * CVE-2017-8911
     An integer underflow has been identified in the unicode_to_utf8()
     function in tnef 1.4.14. This might lead to invalid write
     operations, controlled by an attacker.
Checksums-Sha1:
 1384b3d826a84ce211702e21e483bfa3848a92f9 1879 tnef_1.4.9-1+deb7u3.dsc
 d42ccbe3d41e797fb4133f2e01120680101e8782 3952575 tnef_1.4.9.orig.tar.gz
 d0fcf0fe921b4d5b710b145f00d6e7aca5af4dc6 7758 tnef_1.4.9-1+deb7u3.debian.tar.gz
 5acc4355189e9fe25e1f5eb2c0f0d5db726e74b4 54028 tnef_1.4.9-1+deb7u3_amd64.deb
Checksums-Sha256:
 e074c5713d768dd36e90b665af00f80665eeb365628126ec880db25603cb8939 1879 tnef_1.4.9-1+deb7u3.dsc
 c4d64ec48f79681a11ee45b38c6b2177ce2d0a8c8f99733e90d462bd27eee6af 3952575 tnef_1.4.9.orig.tar.gz
 b2c7319bf7c802d4714fb433463150131beae7fbb70e2400eb5767ecb50626e0 7758 tnef_1.4.9-1+deb7u3.debian.tar.gz
 500212410d620f2ee907efd36abf7aa160640846077539bb6227d4b1dd027aad 54028 tnef_1.4.9-1+deb7u3_amd64.deb
Files:
 c86ae9445a196b593fe0b0f604f3ea9a 1879 text optional tnef_1.4.9-1+deb7u3.dsc
 83a3a8fe0c15c9bbe2a8dae74c46b761 3952575 text optional tnef_1.4.9.orig.tar.gz
 21ca8105493d0388bbc012411273210b 7758 text optional tnef_1.4.9-1+deb7u3.debian.tar.gz
 11e49bd8a8e12b5a4a851287932aca96 54028 text optional tnef_1.4.9-1+deb7u3_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=KKHm
-----END PGP SIGNATURE-----
News for package tnef
