Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted memcached 1.4.13-0.2+deb7u3 (source amd64) into oldoldstable
Date: Thu, 20 Jul 2017 09:20:11 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 20 Jul 2017 10:03:24 +0100
Source: memcached
Binary: memcached
Architecture: source amd64
Version: 1.4.13-0.2+deb7u3
Distribution: wheezy-security
Urgency: high
Maintainer: David Martínez Moreno <ender@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description: 
 memcached  - A high-performance memory object caching system
Closes: 868701
Changes: 
 memcached (1.4.13-0.2+deb7u3) wheezy-security; urgency=high
 .
   * CVE-2017-9951: The try_read_command function allowed remote attackers to
     cause a denial of service via a request to add/set a key that makes a
     comparison between a signed and unsigned integer which triggered a
     heap-based buffer over-read. This vulnerability exists due of an
     incomplete upstream fix for CVE-2016-8705. (Closes: #868701)
Checksums-Sha1: 
 953b4b363c0b94fbdfcc15f1a395d385738f3d0f 1803 memcached_1.4.13-0.2+deb7u3.dsc
 d9a48d222de53a2603fbab6156d48d0e8936ee92 320751 memcached_1.4.13.orig.tar.gz
 a52ac47be15482d0e479512cecf7200479364cbe 15489 memcached_1.4.13-0.2+deb7u3.diff.gz
 d7847d519b92eaa9439f3d92e948dbad21a75678 87246 memcached_1.4.13-0.2+deb7u3_amd64.deb
Checksums-Sha256: 
 36582b4fe3e26da5fec685db2c86a91b7b50586ff448a4427a6751bed2999a22 1803 memcached_1.4.13-0.2+deb7u3.dsc
 cb0b8b87aa57890d2327906a11f2f1b61b8d870c0885b54c61ca46f954f27e29 320751 memcached_1.4.13.orig.tar.gz
 d5dfab649e11f13685791bb7b58d5601b197706070cb06f29464bfa07b40d0d2 15489 memcached_1.4.13-0.2+deb7u3.diff.gz
 2d2b07f0b40ea15ec7e4cd0df251f071bb70c147deb4b9a959f1af41701cf8d4 87246 memcached_1.4.13-0.2+deb7u3_amd64.deb
Files: 
 85d26a8b1d16c8841cd848d3e3ddcde8 1803 web optional memcached_1.4.13-0.2+deb7u3.dsc
 6d18c6d25da945442fcc1187b3b63b7f 320751 web optional memcached_1.4.13.orig.tar.gz
 e343adb36bb0c8ad3e71f99a9c303a7f 15489 web optional memcached_1.4.13-0.2+deb7u3.diff.gz
 08292c16f2344d9e4f8cbf670267811d 87246 web optional memcached_1.4.13-0.2+deb7u3_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAllwcvAACgkQHpU+J9Qx
Hlhtzw//VKXR95eHafowNSeGULS1V0Fn4eSBcsxjbYUYYj/qJwix61UU7Wi0mZmu
hXhwQcU3SsJ75Zm09qFuLsE0I4Y5wY8z6Ei6quXcOOP6v3JzvRKQeixxPMmAZdeH
P+qpKvT/dYRVNfL1tS1ySbzwW01CkbYI08vT+x/nTug7BhpUJbqlBE+zd5P3Wt2L
8Gtc/47nlzJgUDfOIWSgXooA5DDSL3aVwJgzJsiHcMKltSb+7ujfZFHITNCplvO0
F6ILdHjxA0TRlRTSrttl+hWzhkhkygIQLqXjzvxnJ85zRobPagwqdzV1kOZ/5MU+
5yB1zvTp3rLsNfskuSUVti6+AIkS3BZlYyL9X7pCyXJEpApcy0Uai3L6/KZd5/mp
uTnXLasi5ClXbkK8iAx6ubrPZGdvgoJtHr/s01YLo8tL+Hiedx26GAsh03e5Weqf
tgIu8mxz0Iw7A/JXrHZO4AFMW4IndfHDEuDHRdASyUU0+b2LbnCAF8rP71JV3jjv
DAWe6oCT9/9i9oRldCSXqZuzdmIqfCN2Jmf3JWTh1Y6qBV9or3tPlg1Bd/CEdtk8
eUidk6wj7juusurte+jU9ELjBgzQe3+p11wT7OVJ7SKwAxDW0oKwwp8tGfTmBwNu
4dogj8Vk75FdyhIWsQ/Zb4cLbW6Y4KKLhwuz1U+oVZzmRd7y9SE=
=6Mu7
-----END PGP SIGNATURE-----
News for package memcached
