-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: cpio Binary: cpio, cpio-win32 Architecture: any all Version: 2.11+dfsg-0.1+deb7u1 Maintainer: Ruben Molina <[email protected]> Uploaders: Anibal Monsalve Salazar <[email protected]> Homepage: http://www.gnu.org/software/cpio/ Standards-Version: 3.9.3 Vcs-Browser: http://git.debian.org/?p=private/schizo/cpio/.git Vcs-Git: git://git.debian.org/git/private/schizo/cpio Build-Depends: texinfo, gettext Build-Depends-Indep: mingw32 Package-List: cpio deb utils important cpio-win32 deb utils extra Checksums-Sha1: db17d80369acf691611a38979f42f31e47ee6fac 802940 cpio_2.11+dfsg.orig.tar.xz 7dcc907431eeb277cca0bdf647e1734ced440dc3 16920 cpio_2.11+dfsg-0.1+deb7u1.debian.tar.bz2 Checksums-Sha256: f3208df43692895e1ff84cb7625c6cc27b431c9a321fe414faed402b70660cd0 802940 cpio_2.11+dfsg.orig.tar.xz af7d3c420273e5267542662bb6e8ec965db40dfd3e5d9f5cff31cc445015ae6b 16920 cpio_2.11+dfsg-0.1+deb7u1.debian.tar.bz2 Files: 54d2f3b3561c3a1ca2c192e94f00bc38 802940 cpio_2.11+dfsg.orig.tar.xz ab9ccc32777bb208463e32afa596530f 16920 cpio_2.11+dfsg-0.1+deb7u1.debian.tar.bz2 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQQcBAEBCgAGBQJUmJlKAAoJELjWss0C1vRzFRUf/iIOUV8xvnayvHcfniLxbCD2 yrVeSo6Po2RdCoc/T7IwKMNSvv1sjcQ7n5VePr+G2kBsMIQzPVI5mzrO6vD1t4dr hwcncFaNybz4BoiPsqHefnYpoexZT1KMEFXP3Un8R7cofC4VVHKVuaZjWhuMmMTF BnsEkSpu3kzjMGxf6pf2B0+1H8vfkyiVBMJ8Lm2JhRPe467lXchHYZHdwJM5GCqP DfZLigH81eCMT5kdjBypMO1JBuV7y1MzOx3iC7MvTFTHY008x4UStYd+1xek90X8 tYpiCyE3GfQO9+S9/dKT5re1UllctraDkeV+HPhsi2oRS1c94PHdS6i1ddq3mkJu OsmUBihjfL/PSP4Kn+22bqZ7UhMwhIr6o5hflAr2/x/rsY+d90+gpiRIV4A1qyth Tw9VWX4tG5UYLsOFx2R+aC2LlK0L9QsTuNWipmseKdsiGFxy6wZhWXqykROzJ1XY ZtwumW8pQ2hRuHFMeZrbA0ZKBXFimA/y/6hZ9wEnwFm/jp3fBD8AGTCv5keFGls2 ruXjioA/9TALmgj7q4kgut20rXIbHc23HmosBKX+KpRJsE5sm5cDaFL2RQI19vrt +asphV2Qge4E/fm8bPxzo+rFlqNGIHyzOpqrc46O3xsh6LrtqtKlyybivAA/bGpd 3+crejFkiwuRU+KV6RoBDSDC5H77m0mYjDbFrl75KebeI5i0z38LxkKr6D4NO8JD p+fkYiyO+vq+0YFguJ3PrWIkMN3QOs6C7VCtsRjidoX8TJgVWf/IX4wey8LaH28J zyxvNZX0M+fRayYyDzwUsWzbq6ym6kFhhwkaOnD+96Tbr7XfMIc8rY3Ps5CQyiTx E0LWmQaPIe3fXs1JorDgGgpTJj0vGicc7swbBUj4D4TYq9U2S5LARYCxwxVBw/hX ooYc9sRvE3EGKtq9X4+2rtVxwmH+8XEyVIU9xxr9f9blBnUtScQlylyAfk3NS23N 62F1GO+s0n3alEwi8TzUBoz4juocYPiyfpEUflH1MGDjedhvR9SZQQiKoHfQQdPa 9p2CMDyVEmPkeskLInJz2mvSQa5PVTZjWJL5H4zJCl8K1zuCl85xeUDuh88FM55q vz8vcyq9zWTxoH9tm/AMEY4uHDE16XUwDLc28tpvpzBh+N9YRLR2A4ozRtrgxusW QZjv3uJ0o6qVxPuQkxPJpokueGfWhp3Fq18xCGsfv9PWXZrNngjYURuhVrbqi93n dhI1pbCvWURWfhzu/sKAdzry1BX5UFp4QzAAgUUlC2NXKQJmjA0zLeaKnybyQShO UZTetpMnCztC81FSAISNDxbjKD4xCYSYpHwxNMO2Z37/F5zMsJTLtVAztdgQuS0= =mvBF -----END PGP SIGNATURE----- Changes: cpio (2.11+dfsg-0.1+deb7u1) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Fix CVE-2014-9112: out of bounds write, insufficient range checking, and null pointer dereference issues (closes: #772793). -- Michael Gilbert <[email protected]> Mon, 22 Dec 2014 22:13:01 +0000