Debian Package Tracker

From: Markus Koschany <apo@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted sam2p 0.49.1-1+deb7u2 (source amd64) into oldoldstable
Date: Wed, 22 Nov 2017 18:30:11 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 21 Nov 2017 23:10:38 +0100
Source: sam2p
Binary: sam2p
Architecture: source amd64
Version: 0.49.1-1+deb7u2
Distribution: wheezy-security
Urgency: high
Maintainer: Tanguy Ortolo <tanguy+debian@ortolo.eu>
Changed-By: Markus Koschany <apo@debian.org>
Description: 
 sam2p      - convert raster images to EPS, PDF, and other formats
Changes: 
 sam2p (0.49.1-1+deb7u2) wheezy-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * Fix CVE-2017-16663:
     It was discovered that sam2p was affected by an integer overflow
     vulnerability with resultant heap-based buffer overflow in input-bmp.ci
     because width and height multiplications occur unsafely. This may lead to
     an application crash or unspecified other impact.
Checksums-Sha1: 
 cf78579b29eec9c55a9d5a66d0431eecf4c87abb 2070 sam2p_0.49.1-1+deb7u2.dsc
 ede333d5118ae17c8b89beced43d68a7baf33b2d 19760 sam2p_0.49.1-1+deb7u2.debian.tar.xz
 4108e312e3555e608cc1ba5f1167b0f5fc095538 258138 sam2p_0.49.1-1+deb7u2_amd64.deb
Checksums-Sha256: 
 2be2d237b57afee367a728d9ff5360d509af31ac5c382e50e1a413174d777c91 2070 sam2p_0.49.1-1+deb7u2.dsc
 b6897a9704c5451106cc905aa5984194406753fbcfa0f2bc71c4dd46c87ec97e 19760 sam2p_0.49.1-1+deb7u2.debian.tar.xz
 a17828b6cc4be32f7e5b81f94965aa37f9e29579bb0e654bf14f3784446b5ffc 258138 sam2p_0.49.1-1+deb7u2_amd64.deb
Files: 
 806e25f0c8d400c2d5efd3c7aee56c49 2070 graphics optional sam2p_0.49.1-1+deb7u2.dsc
 facda6d7ea28f119d0cc6b645f370889 19760 graphics optional sam2p_0.49.1-1+deb7u2.debian.tar.xz
 3641271f86b62f1bdaad22b56c895d08 258138 graphics optional sam2p_0.49.1-1+deb7u2_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=grOM
-----END PGP SIGNATURE-----
News for package sam2p
