Debian Package Tracker

From: Bertrand Marc <bmarc@debian.org>
To: <>
Subject: Accepted libextractor 1:1.3-4+deb9u2 (source) into stable->embargoed, stable
Date: Mon, 10 Sep 2018 20:45:42 +0000
Signed by: Salvatore Bonaccorso <salvatore.bonaccorso@gmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 08 Sep 2018 15:30:55 +0200
Source: libextractor
Binary: libextractor3 libextractor-dbg libextractor-dev extract
Architecture: source
Version: 1:1.3-4+deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: Bertrand Marc <beberking@gmail.com>
Changed-By: Bertrand Marc <bmarc@debian.org>
Closes: 904903 904905 907987
Description: 
 extract    - displays meta-data from files of arbitrary type
 libextractor-dbg - extracts meta-data from files of arbitrary type (debug)
 libextractor-dev - extracts meta-data from files of arbitrary type (development)
 libextractor3 - extracts meta-data from files of arbitrary type (library)
Changes:
 libextractor (1:1.3-4+deb9u2) stretch-security; urgency=high
 .
   * Fix CVE-2018-14346 (Closes: #904903), a stack-based buffer overflow
     in unzip.c.
   * Fix CVE-2018-14347 (Closes: #904905), infinite loop vulnerability in
     mpeg_extractor.c.
   * Fix CVE-2018-16430 (Closes: #907987), missing 0-terminator on corrupted
     ZIP files.
Checksums-Sha1: 
 12a73e29a4e7f5ec585564dadd09398f1c54b866 2701 libextractor_1.3-4+deb9u2.dsc
 3fe0c0bfc5a3b02913b0e9f755779dabf3e54750 19284 libextractor_1.3-4+deb9u2.debian.tar.xz
Checksums-Sha256: 
 738b7dd78f94dd97615f3e83c4380ce4a2b9ca7afbe91198f77e4bfdba783d04 2701 libextractor_1.3-4+deb9u2.dsc
 ea011219600ae53e9badc5275179547dbfc6d988e48a4bda5ce8328ad603f2ba 19284 libextractor_1.3-4+deb9u2.debian.tar.xz
Files: 
 81eab9b08f700fbb464a80f40d1c9b66 2701 libs optional libextractor_1.3-4+deb9u2.dsc
 14aff172eaca0a7f47770992cad036ed 19284 libs optional libextractor_1.3-4+deb9u2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=VQhy
-----END PGP SIGNATURE-----

News for package libextractor