-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: libraw Binary: libraw10, libraw-bin, libraw-dev, libraw-doc Architecture: any all Version: 0.16.0-9+deb8u1 Maintainer: Debian Shotwell Maintainers <[email protected]> Uploaders: Matteo F. Vescovi <[email protected]> Homepage: http://www.libraw.org/ Standards-Version: 3.9.6 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-shotwell/libraw.git Vcs-Git: git://anonscm.debian.org/pkg-shotwell/libraw.git Testsuite: autopkgtest Build-Depends: debhelper (>= 9), autotools-dev, dh-autoreconf, pkg-config, libjasper-dev, liblcms2-dev, libjpeg-dev Package-List: libraw-bin deb graphics optional arch=any libraw-dev deb libdevel optional arch=any libraw-doc deb doc optional arch=all libraw10 deb libs optional arch=any Checksums-Sha1: 492239aa209b1ddd1f030da4fc2978498c32a29b 1472935 libraw_0.16.0.orig.tar.gz 8b2dbe50ba7db5bd177c80aaba0f6fcbcddfa003 26852 libraw_0.16.0-9+deb8u1.debian.tar.xz Checksums-Sha256: 71f43871ec2535345c5c9b748f07813e49915170f9510b721a2be6478426cf96 1472935 libraw_0.16.0.orig.tar.gz 9d8fc86489afd57f0be225e37c210b90e4fede7b6f348c0b10e814f79a990893 26852 libraw_0.16.0-9+deb8u1.debian.tar.xz Files: 21f569be043057b754d87e3062e2345a 1472935 libraw_0.16.0.orig.tar.gz 7156478db652c0ecfabbe02db2620d7c 26852 libraw_0.16.0-9+deb8u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Comment: Debian powered! iQJ8BAEBCgBmBQJVaAkBXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRGM0REMDlGOERBODdEMURGNTA0NkM5OUIw NjEyRjQ5NDRFQ0RDRDVBAAoJEAYS9JROzc1af7AP/3D3i//vLsAIUPJyn3781DKe +m0csAn7wG2JOMWWLBS78h05B8/2MziXpU8EZ4mQtnG02aYzKaNKOPWgApWGjRQC NgzAw1taZOfwoyc4Xov/quErX6c0kShGSvevjbDKUtPdSKTZuUuDHehGiFEXE7Wj 0ZVyPcOY/hCMCDVSYk5iJ7zqQduSbFKMVQrHI42hsAWJT47vxMuTb1gwqikALbAv BYH/J62OWftG8+7b+DK+BHrQilo/Mbg2HJeyWDSN/QCz1ph1ylxklMGoMxULlP6O u6TxA9ne8q0FenLuS4wCpRX3fyhOAlJ1URKZAEIzGUQl4nT/ERSG4/gTgiM6QsYy MFErc+vrYOjUWyUJEc/6ggn7iae/LfeUKC6K8Ow3pnUPcxsBfUEoIQexv6uykFnF dBntWnnnBU9MqfxCNsGJ110vNEV4jFgjPX7xU60aoPyCdp2EopKtBISCAiTMzSFl iZRXUey9/w8nv+onVwusSVivAHJJqxjBJGrLQ6987uV4RWuZw9jSSIqEZkmzf8z5 AzPXbv5uzEHlg9r/rLPg2isgErGh2OGwUjOn1Wd1jjeoKSaypMem9SiJyj3vXYaz Zn2zgRUv0ZQFF/SgJkzGlsQaT8EkBrMaSjo0GQGm026T484XqVnIZsCJM6rcVaLi rMy3nn82UFnAx25chPUv =N5Dl -----END PGP SIGNATURE----- Changes: libraw (0.16.0-9+deb8u1) stable; urgency=high * debian/patches/: patchset updated - 0001-Fix_CVE-2015-3885.patch added | Integer overflow in the ljpeg_start function | in dcraw 7.00 and earlier allows remote attackers | to cause a denial of service (crash) via a | crafted image, which triggers a buffer overflow, | related to the len variable. -- Matteo F. Vescovi <[email protected]> Tue, 26 May 2015 18:09:20 +0200
