-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 06 Sep 2018 10:10:29 +0100 Source: lcms2 Binary: liblcms2-dev liblcms2-dbg liblcms2-2 liblcms2-utils Architecture: source amd64 Version: 2.6-3+deb8u2 Distribution: jessie-security Urgency: high Maintainer: Oleksandr Moskalenko <malex@debian.org> Changed-By: Chris Lamb <lamby@debian.org> Description: liblcms2-2 - Little CMS 2 color management library liblcms2-dbg - debugging symbols for lcms2 liblcms2-dev - Little CMS 2 color management library development headers liblcms2-utils - Little CMS 2 color management library (utilities) Closes: 907983 Changes: lcms2 (2.6-3+deb8u2) jessie-security; urgency=high . * CVE-2018-16435: Fix an integer overflow vulnerability which could lead to a heap-based buffer overflow via a specially-crafted input file. (Closes: #907983) Checksums-Sha1: acf8002c4e5afb092632791a979c1c43330ab77b 2132 lcms2_2.6-3+deb8u2.dsc b0ecee5cb8391338e6c281d1c11dcae2bc22a5d2 4583389 lcms2_2.6.orig.tar.gz ae0a142bd1e3771006eeb4f09fd691e146aa0790 2417368 lcms2_2.6-3+deb8u2.debian.tar.xz 92858909620aca2febd3e63b4c1d07146c157ef8 4662290 liblcms2-dev_2.6-3+deb8u2_amd64.deb 69aaa90bae138b9b7e63968ea8c07776c5f7641e 444604 liblcms2-dbg_2.6-3+deb8u2_amd64.deb 308698221c333ea964b6644018f0078ce6d09af7 141712 liblcms2-2_2.6-3+deb8u2_amd64.deb 7774368c1e153a94e8c0367b89814afd2136a8cb 45046 liblcms2-utils_2.6-3+deb8u2_amd64.deb Checksums-Sha256: 28a0f90176b2ad36544bfab0d08dfcdabe552c4b9e843fc1bf52d51861e30acb 2132 lcms2_2.6-3+deb8u2.dsc 5172528839647c54c3da211837225e221be93e4733f5b5e9f57668f7107e14b1 4583389 lcms2_2.6.orig.tar.gz ad24110e3a97dd1061e6338ec74e209c26b2aeb70acca8feedd0f6105197dca0 2417368 lcms2_2.6-3+deb8u2.debian.tar.xz d2764c504f4891788539da232bdb6ebe71cbf23f058b38e5c39210ed26bc6363 4662290 liblcms2-dev_2.6-3+deb8u2_amd64.deb 623aab5bb5dad602d92064682ec37e9eea973d752751a554581e23a0f5dda75d 444604 liblcms2-dbg_2.6-3+deb8u2_amd64.deb c388856db0c3c52756f317cb2b48764afbca2781e91df96e6a286f6c7add98c6 141712 liblcms2-2_2.6-3+deb8u2_amd64.deb c4706c7e4e863684f6b3872446da928d58955b84c839ec0bef4732ddd84c5bf1 45046 liblcms2-utils_2.6-3+deb8u2_amd64.deb Files: 8b33895322c0eeaa84bef264994f7fc7 2132 libs optional lcms2_2.6-3+deb8u2.dsc f4c08d38ceade4a664ebff7228910a33 4583389 libs optional lcms2_2.6.orig.tar.gz 1922b246c7c90497cb21e6c91541558a 2417368 libs optional lcms2_2.6-3+deb8u2.debian.tar.xz d14cedbda0c46f11e398533e7dd5e488 4662290 libdevel optional liblcms2-dev_2.6-3+deb8u2_amd64.deb b7f8eb5d99cb64e73ac3d500d077a34b 444604 debug extra liblcms2-dbg_2.6-3+deb8u2_amd64.deb f474a38bd8ba8fb3edbbdcc7bd1032df 141712 libs optional liblcms2-2_2.6-3+deb8u2_amd64.deb aad744d1ac286b82377436d7e6e536ba 45046 utils optional liblcms2-utils_2.6-3+deb8u2_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAluQ8UsACgkQHpU+J9Qx HljiEw/+ITH2/psTtqoeW+7TKE8h32YKfPiiAaDr0Gu7+0i5esyEsQgiaExlAZ1U VqfETYEyAQRshF5BMYxTj2W1bCN/13WEnbTueUfDzwn+IkOZx+DQ4x+m0YB5rFyE pnnII/aFXFmn3tkAchK3tOmoWShaY4snIJUSQ3LFDQt61tNaHZ3au0253fOLry9x y+1yBeYp2fO2rNFanc9PF4RffubZyELqoiOFUFkVu97PeR9pRv5Tt6C4i0Hvv6Lp GvWMa2OjIxLtQBAh+uLbMm5FWu0P3w4HEpmBb3vYd6ze5hbCvG76rhMoUjnxoJoU ktDGIWkvKLg7Gd2Khgsw6AwIP71hv2Lb4WY9xz+G1IdrRKaflZN9BL7X5irX4wwQ Utmna3cJkqp93ZI2p6DJJXZnsNtFSyof97h1RuWGtpD3vSN/E1Rh/7nxWEQOcH0a 7p6uILKfttXI+n3mf2hq1sJgNSTWkrnUUhXFdnXe3LHp/LFFqWzP+GUyFVmwDQK5 St5LCQ+chOAQg0FU0OuL3NPstG3RFUusGAGH8ewBGV2M6cfTbxMqCWOHykS7CW5e GQAVkBPkaSJXqAzXyVyJ0+qqXOse7Ziv5pXuqmqqiQ97mvpfeWuoZJPjkNya3Dgt jJgz53qenQxSTrIdQt9TZTgNYlCcSwALwYuod02zbnxg2iN616I= =iyGD -----END PGP SIGNATURE-----
