Accepted clamav 1.0.5+dfsg-1~deb12u1 (source) into proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 08 Feb 2024 21:58:26 +0100 Source: clamav Architecture: source Version: 1.0.5+dfsg-1~deb12u1 Distribution: bookworm Urgency: medium Maintainer: ClamAV Team Changed-By: Sebastian Andrzej Siewior Closes: 1063479 Changes: clamav (1.0.5+dfsg-1~deb12u1) bookworm; urgency=medium . * Import 1.0.4 (Closes: #1063479). - Update symbols. - CVE-2024-20290 (Fixed a possible heap overflow read bug in the OLE2 file parser that could cause a denial-of-service (DoS) condition.) - CVE-2024-20328 (Fixed a possible command injection vulnerability in the "VirusEvent" feature of ClamAV's ClamD service. Checksums-Sha1: 14d2d2bda6f8357812caca780fc38aabba1c997a 2849 clamav_1.0.5+dfsg-1~deb12u1.dsc f4f5016ce9ff75ad1db40f3475c100dc5fd87243 25821000 clamav_1.0.5+dfsg.orig.tar.xz f4596253eebccbe31f44ce69062652e9c7275128 226396 clamav_1.0.5+dfsg-1~deb12u1.debian.tar.xz Checksums-Sha256: 71241354e5a015b19ca070b60ba24922781c72f1987c71c58d09ef7356be6d8e 2849 clamav_1.0.5+dfsg-1~deb12u1.dsc b9c98462e0747f20178fff61ca4f823d97e4f599b919610ce64f65d1aeb4d807 25821000 clamav_1.0.5+dfsg.orig.tar.xz 337610ab8f8f5e911dfde585c112d2b680b0576efae73b9f7f3647c3dc7dc52b 226396 clamav_1.0.5+dfsg-1~deb12u1.debian.tar.xz Files: 6a224775343411560018b5a5168dee8b 2849 utils optional clamav_1.0.5+dfsg-1~deb12u1.dsc 93f486687a7b4031e686b1c33dcfdc9c 25821000 utils optional clamav_1.0.5+dfsg.orig.tar.xz 2dbef1c7381a72235cbf96b22f8b1f7e 226396 utils optional clamav_1.0.5+dfsg-1~deb12u1.debian.tar.xz -BEGIN PGP SIGNATURE- iQGzBAEBCgAdFiEEV4kucFIzBRM39v3RBWQfF1cS+lsFAmXGkWoACgkQBWQfF1cS +lv6EAv8DEK5jLpcr++oyqV0WiESj+bZmkWDVZdbM5u60RXG06KZv2zV/Q2gyvAo uRtAM9t6R/wIwRgaYbFzFdHhy7L54efzXBfbPJEO0Lv2tW+LqRGCjq+1Wb9vUZ4U BDaR4wXoa8yaEXvlzfDE/jPqTG5zguoIrZzohol/eXJTbF1W1n3gsJiioDb+wpZs ino7dDw7j+TozPZ2yqeL9otFrnJ/i0JH9PTudmGltoJuycxy1jFXVguwSWm7QoZ5 4M+NZieNbohLgJ1l/CIXGQkgXqY615d9JX5Q26Tpwq+U/c/FNh3PFKDx8tUSE3xs syt3LYlccOKsJdqPNhRuTlg8MM2tJIZM9TT3G4pEGAdADHEVO7OVeG8llsBZlJM3 HYHpAwtjUA9ljEohcv2yfgNL5sqTyz1zbE14VQSfOzT0VcCoVzjrRYbirQElvym4 37jiFRJa5RiO/y1oSVNf8BXsdiBCH+tZtD1r5I6h1XRmFdZP3jkqo+9dMB3byyXO 2cs/wP8y =G1kB -END PGP SIGNATURE- pgpVt9d3kUIFk.pgp Description: PGP signature
Accepted yard 0.9.28-2+deb12u1 (source) into proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 28 Feb 2024 18:23:28 -0300 Source: yard Architecture: source Version: 0.9.28-2+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: Debian Ruby Team Changed-By: Antonio Terceiro Changes: yard (0.9.28-2+deb12u1) bookworm-security; urgency=high . * Add upstream patch to fix XSS vulnerability in frames.html [CVE-2024-27285] Checksums-Sha1: 8b91f6426776863c69d18675b544bc83faf0b3e3 2218 yard_0.9.28-2+deb12u1.dsc aa53ce4dde0e5329403d735fa370e431a82dfe56 932436 yard_0.9.28.orig.tar.gz 7a8c6972bd8967935e282a6ba26aa797a2b50cd0 82120 yard_0.9.28-2+deb12u1.debian.tar.xz 7f96ec820d1f7f15221c20f7e7922fbe31b435a9 13779 yard_0.9.28-2+deb12u1_source.buildinfo Checksums-Sha256: d5df0b49fb6722728b11de5ddc34d48f3b53beeb58e9fbc02c5c9b80524e36f7 2218 yard_0.9.28-2+deb12u1.dsc 612282a983e4d139aa85ca05e8e1b5fef79cf79c22196008d2ae9dd7a50ee413 932436 yard_0.9.28.orig.tar.gz 52a58ef4c9e350c5e26b48466d5206749e82c2a144416cff4f67e5dd0de58e8c 82120 yard_0.9.28-2+deb12u1.debian.tar.xz c7187e105e753ba9ee6faec9a9a19ceb53d97dd466ebcd2dad1bee5372a8f988 13779 yard_0.9.28-2+deb12u1_source.buildinfo Files: a52ff80acf8889340f402d4e86f6ff32 2218 ruby optional yard_0.9.28-2+deb12u1.dsc 45e13d2acc2a73ed704570346ccc4293 932436 ruby optional yard_0.9.28.orig.tar.gz 21d18ed305d431b98e4d6ad3ba39830d 82120 ruby optional yard_0.9.28-2+deb12u1.debian.tar.xz 9a761fa186676ec1b84364a560ea8135 13779 ruby optional yard_0.9.28-2+deb12u1_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEst7mYDbECCn80PEM/A2xu81GC94FAmXhC1AACgkQ/A2xu81G C94BkA//d7NWJmGFFDQatfjdr7W0U91/aw9RJEXjbWZd7e6Qh1XyFzyZqUMa4Iac NbZ3pQyyd+SjW11SrMetK24TuE7Y6YtOmoueqEM0ZCtLXOYZ3MdbLXVdJWGwowgP RNz7QnVumxPLnEtH53x6KwL80sghkBeDgioY7T+srDwygUOM04/tYXj5+Sn1XorT /ygOj16Iu9ipKR/3oRDxYieW79nddfmAHGaUzQDM79Xb9vhri+/98OsLFg1qe7LM 7GqF8ooBYcEm9qRlHUQmNvuuXfPiKNTjQY0AA6rp4GhdqVwXH9kOKjSicmY+6VXN vMJ/l+SbWuYBxmCWP7+Zx3fCfm5YvllG0TTAljvElg8zLrkWGyXXVIoIQkZElwMr Ed/kACfucxUmg8sBgfQ69GqdID2Tohvv4w2hXXrNb/wtfedxAvMNAr6D1EooX/vI /UZ+re5d4JHQXxdoN+6KQ0CKMR6wrSgicfXaKSsz0vw583yTbmfEV5MbZZeCXvn1 19rmWsr4LOeiBZb66uz88cr2PFIcem5zLkzGQGUWkLd+mrL0wL96eKtVjKXSxAgV t9RBEUqwRq5k0Vdwo/SsQDJmYSVcNFUYgJ0CyNlftR6bGlgtY02cyrouTBe5GvtB gxde2j0WjOxnXFnbiPFk4UjnfEU1mcXGg/aBM64LU9MD5Cr7kh0= =23YE -END PGP SIGNATURE- pgpWMinYDxgFT.pgp Description: PGP signature
Accepted yard 0.9.28-2+deb12u2 (source) into proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 04 Mar 2024 06:54:40 -0300 Source: yard Architecture: source Version: 0.9.28-2+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: Debian Ruby Team Changed-By: Antonio Terceiro Closes: 1065118 Changes: yard (0.9.28-2+deb12u2) bookworm-security; urgency=high . * Update patch for CVE-2024-27285 (Closes: #1065118) Checksums-Sha1: b5992935c31394074c9e3ace19c994d174d25e0c 2218 yard_0.9.28-2+deb12u2.dsc eb30663ca73ee9debd8b41ac3e940e84105c2df2 82328 yard_0.9.28-2+deb12u2.debian.tar.xz 4714ad4f100256abe18ec9004e2d58a51090164f 13779 yard_0.9.28-2+deb12u2_source.buildinfo Checksums-Sha256: 57eefb97ea65c2e01dc6769f1e100eaa1855ad7d9c71a0034d8afb1648d4c645 2218 yard_0.9.28-2+deb12u2.dsc eaa41d540d36c9002812c3732449cfa3f4e37863a487e9aa0dc06652cc89cc75 82328 yard_0.9.28-2+deb12u2.debian.tar.xz ae78d302de969459a96426f4d9a2bffe4a5f484af4c539c46e8e2ea3b3ae2ee2 13779 yard_0.9.28-2+deb12u2_source.buildinfo Files: f8335213649cc69cc941d2b4cb83f880 2218 ruby optional yard_0.9.28-2+deb12u2.dsc 956c8b92fa3670ce7a6cf25a5d39e829 82328 ruby optional yard_0.9.28-2+deb12u2.debian.tar.xz bbba007db04324a0c860b13104d26527 13779 ruby optional yard_0.9.28-2+deb12u2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEst7mYDbECCn80PEM/A2xu81GC94FAmXlnzsACgkQ/A2xu81G C95VOBAAiol4m5dewT6nj9kXmboUErStBYqA4JySRRUlixiPi32p9i/5fghAtHKr 50txCGwZhoe9ES8PiyhYA9dgG5ksOHguerriBnSflRENzMLBKxVTsE4OIoha2P4D huWc1WuxGthioPMCibXKybAZdR3s43Pw0ayCzMvXEQp/Jo1CGfUTLgisqGsK/sMm AWbTvytmfbqiQLekv6h1DKqeigiN9MEjkplbIdbxLa+DU7Sb1BUSxtQ5BtowFybc iWfHbCAyfN8sg7Mk1eT+eoBSq8Hz4Fkr/4BfRcLuybmbDo/a/CxwUDIkGXFdBOXa D8hWjOeNKV4vndz/wKgkwk8kMUQgGGKUnGsJMn+J1K8TiFoF507acqbeAheDRSSp D6s/SS5kSRpe5gq+LOKRNRZkb6K/6V+LZX8mfZbD3E4zJ+9mdTy/A3zdC0rq6KHb 3JpcbqibAwmc+nsqlKemOiVzPBUV9eCyvl1iNjNTntDA4m8qXHVujp7kDpO/gNKK aCA5twEeMH7h/YcvaI/addwf0IrA0tiDsUgKgQtl1QBOg496WAvUVKwNZf7tuOeR NiC1CIn8LIy6YCpWh9uRhxqDNUsiLS9DywCW/ROUDRLijxTMfgN+CelzlaheR+4W cxAT0stx9c8C4saqpPE2RHn1HArdOc/kqV4F+Vzp2tz1QMHuIXs= =qGTs -END PGP SIGNATURE- pgpEKA2FmFyzq.pgp Description: PGP signature