Accepted linux-4.9 4.9.168-1+deb9u5~deb8u1 (all source) into oldoldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 13 Aug 2019 19:47:06 +0100 Binary: linux-doc-4.9 linux-headers-4.9.0-0.bpo.9-common linux-headers-4.9.0-0.bpo.9-common-rt linux-manual-4.9 linux-source-4.9 linux-support-4.9.0-0.bpo.9 Source: linux-4.9 Architecture: all source Version: 4.9.168-1+deb9u5~deb8u1 Distribution: jessie-security Urgency: high Maintainer: Debian Kernel Team Changed-By: Ben Hutchings Description: linux-doc-4.9 - Linux kernel specific documentation for version 4.9 linux-headers-4.9.0-0.bpo.9-common - Common header files for Linux 4.9.0-0.bpo.9 linux-headers-4.9.0-0.bpo.9-common-rt - Common header files for Linux 4.9.0-0.bpo.9-rt linux-manual-4.9 - Linux kernel API manual pages for version 4.9 linux-source-4.9 - Linux kernel source for version 4.9 with Debian patches linux-support-4.9.0-0.bpo.9 - Support files for Linux 4.9 Changes: linux-4.9 (4.9.168-1+deb9u5~deb8u1) jessie-security; urgency=medium . * Backport to jessie: - [x86] Revert "xen/pciback: Don't disable PCI_COMMAND on PCI device reset." (reintroduces CVE-2015-8553) - [x86] Remove Breaks relation to qemu-system-x86 . linux (4.9.168-1+deb9u5) stretch-security; urgency=high . * [amd64] Add mitigation for Spectre v1 swapgs (CVE-2019-1125): - cpufeatures: Sort feature word 7 - speculation: Prepare entry code for Spectre v1 swapgs mitigations - speculation: Enable Spectre v1 swapgs mitigations - entry: Use JMP instead of JMPQ - speculation/swapgs: Exclude ATOMs from speculation through SWAPGS * [x86] xen/pciback: Don't disable PCI_COMMAND on PCI device reset. (CVE-2015-8553) - Add Breaks relation to incompatible qemu-system-x86 versions * ipv6: check sk sk_type and protocol early in ip_mroute_set/getsockopt * percpu: stop printing kernel addresses (CVE-2018-5995) * scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836) * block: blk_init_allocated_queue() set q->fq as NULL in the fail case (CVE-2018-20856) * vfio/type1: Limit DMA mappings per container (CVE-2019-3882) * Bluetooth: hci_uart: check for missing tty operations (CVE-2019-10207) * siphash: add cryptographically secure PRF * inet: switch IP ID generator to siphash (CVE-2019-10638, CVE-2019-10639) * Input: gtco - bounds check collection indent level (CVE-2019-13631) * [ppc64el] tm: Fix oops on sigreturn on systems without TM (CVE-2019-13648) * floppy: fix div-by-zero in setup_format_params (CVE-2019-14284) * floppy: fix out-of-bounds read in next_valid_format * floppy: fix invalid pointer dereference in drive_name * floppy: fix out-of-bounds read in copy_buffer (CVE-2019-14283) * inet: Avoid ABI change for IP ID hash change * vhost: Fix possible infinite loop (CVE-2019-3900): - vhost-net: set packet weight of tx polling to 2 * vq size - vhost_net: use packet weight for rx handler, too - vhost_net: introduce vhost_exceeds_weight() - vhost: introduce vhost_exceeds_weight() - vhost_net: fix possible infinite loop - vhost: scsi: add weight support * vhost: Ignore ABI changes * netfilter: ctnetlink: don't use conntrack/expect object addresses as id * xen: let alloc_xenballooned_pages() fail if not enough memory free * tcp: Clear sk_send_head after purging the write queue Checksums-Sha1: cca1b3fdc7700584e039efae190ea1c93c04dfd6 15581 linux-4.9_4.9.168-1+deb9u5~deb8u1.dsc cb3d7617e46747a5c673689850528ff69930a8df 2097692 linux-4.9_4.9.168-1+deb9u5~deb8u1.debian.tar.xz 4f4d8087dfb920973a6e1c02411f578cb4ba09d7 7681450 linux-headers-4.9.0-0.bpo.9-common_4.9.168-1+deb9u5~deb8u1_all.deb 0d0f2808b4fd697b29badb7df1c7c68b332ecd6d 5740712 linux-headers-4.9.0-0.bpo.9-common-rt_4.9.168-1+deb9u5~deb8u1_all.deb 2118b019d009677859b5974d0c7e0897b58cbb11 11417668 linux-doc-4.9_4.9.168-1+deb9u5~deb8u1_all.deb 4317ae13253686506bf77636ad559a9b3e823c02 685558 linux-support-4.9.0-0.bpo.9_4.9.168-1+deb9u5~deb8u1_all.deb ef9f927e7e056fb93d26be25750757d6df6f3449 3237820 linux-manual-4.9_4.9.168-1+deb9u5~deb8u1_all.deb fb8cc9ba05e6fa0ab0d94ba496dc2ee92eeb5cdc 96847172 linux-source-4.9_4.9.168-1+deb9u5~deb8u1_all.deb Checksums-Sha256: dd39ed2915c0f9b7d67bfb03369c1214fac3667146ebce424d9bd846cc34011a 15581 linux-4.9_4.9.168-1+deb9u5~deb8u1.dsc 60e3eb7734f5ba6bd77a3d91c527ccd2a84a1f49f4a2a40e24d37bf456f8e4df 2097692 linux-4.9_4.9.168-1+deb9u5~deb8u1.debian.tar.xz 0bd4885613f91fae46e00333217c620d84d46f622558b1d2054167ae52d83ef9 7681450 linux-headers-4.9.0-0.bpo.9-common_4.9.168-1+deb9u5~deb8u1_all.deb ddba276e7f6bd01089b45008df72347d8f12c6c67ad75668fff85fd7438e76ef 5740712 linux-headers-4.9.0-0.bpo.9-common-rt_4.9.168-1+deb9u5~deb8u1_all.deb 834b9ea5ae8e1ebc10f4c3374b7a55cbe912ffa2e3879c48afba5f564d92e91f 11417668 linux-doc-4.9_4.9.168-1+deb9u5~deb8u1_all.deb b0d8937da645d8c445a0657257069f75dfc087a76cb068bee4ee5dfafbc40ebc 685558
Accepted linux 3.16.72-1 (all source) into oldoldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 13 Aug 2019 19:44:18 +0100 Binary: linux-doc-3.16 linux-manual-3.16 linux-source-3.16 linux-support-3.16.0-10 Source: linux Architecture: all source Version: 3.16.72-1 Distribution: jessie-security Urgency: high Maintainer: Debian Kernel Team Changed-By: Ben Hutchings Description: linux-doc-3.16 - Linux kernel specific documentation for version 3.16 linux-manual-3.16 - Linux kernel API manual pages for version 3.16 linux-source-3.16 - Linux kernel source for version 3.16 with Debian patches linux-support-3.16.0-10 - Support files for Linux 3.16 Changes: linux (3.16.72-1) jessie-security; urgency=high . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.71 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.72 - ipv6: check sk sk_type and protocol early in ip_mroute_set/getsockopt (CVE-2017-18509) - xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink - Staging: iio: meter: fixed typo - iio: Use kmalloc_array() in iio_scan_mask_set() - iio: Fix scan mask selection - perf/core: Restore mmap record type correctly - ext4: fix data corruption caused by unaligned direct AIO - ext4: add missing brelse() in add_new_gdb_meta_bg() - xfrm6_tunnel: Fix potential panic when unloading xfrm6_tunnel module - IB/mlx4: Fix race condition between catas error reset and aliasguid flows - staging: speakup_soft: Fix alternate speech with other synths - netfilter: bridge: set skb transport_header before entering NF_INET_PRE_ROUTING - udf: Fix crash on IO error during truncate - sctp: get sctphdr by offset in sctp_compute_cksum - NFS: fix mount/umount race in nlmclnt. - [armhf] imx6q: cpuidle: fix bug that CPU might not wake up at expected time - USB: serial: ftdi_sio: add additional NovaTech products - device_cgroup: fix RCU imbalance in error case - net-sysfs: call dev_hold if kobject_init_and_add success - tcp: do not use ipv6 header for ipv4 flow - dccp: do not use ipv6 header for ipv4 flow - [i386] 3c515: fix integer overflow warning - [armhf] dts: pfla02: increase phy reset duration - USB: serial: mos7720: fix mos_parport refcount imbalance on error path - staging: rtl8712: uninitialized memory in read_bbreg_hdl() - ALSA: rawmidi: Fix potential Spectre v1 vulnerability (CVE-2017-5753) - ALSA: seq: oss: Fix Spectre v1 vulnerability (CVE-2017-5753) - [x86] iommu/vt-d: Check capability before disabling protected memory - futex: Ensure that futex address is aligned in handle_futex_death() - ALSA: pcm: Fix possible OOB access in PCM oss plugins - xhci: Don't let USB3 ports stuck in polling state prevent suspend - batman-adv: Reduce claim hash refcnt only for removed entry - batman-adv: Reduce tt_local hash refcnt only for removed entry - batman-adv: Reduce tt_global hash refcnt only for removed entry - ALSA: pcm: Don't suspend stream in unrecoverable PCM state - net: phy: don't clear BMCR in genphy_soft_reset - USB: serial: cp210x: add new device id - afs: Fix StoreData op marshalling - KVM: Reject device ioctls from processes other than the VM's creator - [x86] kvm: IA32_ARCH_CAPABILITIES is always supported - [x86] KVM: Emulate MSR_IA32_ARCH_CAPABILITIES on AMD hosts - fs/proc/proc_sysctl.c: fix NULL pointer dereference in put_links - iio: core: fix a possible circular locking dependency - dm table: propagate BDI_CAP_STABLE_WRITES to fix sporadic checksum errors - dccp: Fix memleak in __feat_register_sp - xfrm4: Fix header checks in _decode_session4. - xfrm4: Reload skb header pointers after calling pskb_may_pull. - xfrm4: Fix uninitialized memory read in _decode_session4 - sched/fair: Do not re-read ->h_load_next during hierarchical load calculation - btrfs: prop: fix vanished compression property after failed set - btrfs: correctly validate compression type - dm: disable DISCARD if the underlying storage no longer supports it - mtd: cfi: fix deadloop in cfi_cmdset_0002.c do_write_buffer - xen: Prevent buffer overflow in privcmd ioctl - ALSA: seq: Fix OOB-reads from strlcpy - PCI: Add function 1 DMA alias quirk for Marvell 9170 SATA controller - sunrpc: don't mark uninitialised items as VALID. - lib/string.c: implement a basic bcmp - ACPICA: Namespace: remove address node from global list after method termination - block: do not leak memory in bio_copy_user_iov() - net: bridge: multicast: use rcu to access port list from br_multicast_start_querier - [x86] iommu/amd: Set exclusion range correctly - rt2x00: do not increment sequence number while re-transmitting - vxge: fix return of a free'd memblock on a failed dma
Accepted tomcat8 8.0.14-1+deb8u15 (source all) into oldoldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 13 Aug 2019 16:22:22 +0200 Source: tomcat8 Binary: tomcat8-common tomcat8 tomcat8-user libtomcat8-java libservlet3.1-java libservlet3.1-java-doc tomcat8-admin tomcat8-examples tomcat8-docs Architecture: source all Version: 8.0.14-1+deb8u15 Distribution: jessie-security Urgency: high Maintainer: Debian Java Maintainers Changed-By: Sylvain Beucler Description: libservlet3.1-java - Servlet 3.1, JSP 2.3, EL 3.0 and WebSocket 1.0 Java API classes libservlet3.1-java-doc - Servlet 3.1, JSP 2.3, EL 3.0 and WebSocket 1.0 Java API documenta libtomcat8-java - Apache Tomcat 8 - Servlet and JSP engine -- core libraries tomcat8- Apache Tomcat 8 - Servlet and JSP engine tomcat8-admin - Apache Tomcat 8 - Servlet and JSP engine -- admin web application tomcat8-common - Apache Tomcat 8 - Servlet and JSP engine -- common files tomcat8-docs - Apache Tomcat 8 - Servlet and JSP engine -- documentation tomcat8-examples - Apache Tomcat 8 - Servlet and JSP engine -- example web applicati tomcat8-user - Apache Tomcat 8 - Servlet and JSP engine -- tools to create user Changes: tomcat8 (8.0.14-1+deb8u15) jessie-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix flacky FTBFS by improving fix for CVE-2017-5647. * Refresh the expired SSL certificates used by the tests from freshly-renewed upstream Tomcat and adapt the test user DN. * Fix CVE-2019-0221: The SSI printenv command in Apache Tomcat echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website. * Fix CVE-2018-8014: The defaults settings for the CORS filter provided in Apache Tomcat are insecure and enable 'supportsCredentials' for all origins. It is expected that users of the CORS filter will have configured it appropriately for their environment rather than using it in the default configuration. Therefore, it is expected that most users will not be impacted by this issue. * Fix CVE-2016-5388: Apache Tomcat, when the CGI Servlet is enabled, follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. The 'cgi' servlet now has a 'envHttpHeaders' parameter to filter environment variables. Checksums-Sha1: fe27608a17a27924d52db098d9609afa691a7694 2517 tomcat8_8.0.14-1+deb8u15.dsc 5641f2ec4b8e89276ad614cba3bd154802fa1a3c 92272 tomcat8_8.0.14-1+deb8u15.debian.tar.xz f6d74cfbf3dfc83a23e3e6c074e1fae9265d0b16 60006 tomcat8-common_8.0.14-1+deb8u15_all.deb f46f66c25347eb38f78279531236dea4e5cdcaec 49564 tomcat8_8.0.14-1+deb8u15_all.deb 521836a26bf198eafb1ae86517f1084bc29d1f86 37050 tomcat8-user_8.0.14-1+deb8u15_all.deb 7d2cb1f17f1cc5b6c2973d12e1f4e4c59854d727 4594576 libtomcat8-java_8.0.14-1+deb8u15_all.deb f9e44c59af699e57d418e2f85440decdda7c271f 394400 libservlet3.1-java_8.0.14-1+deb8u15_all.deb 79fc470fe8d20d4d721bf8c4710445c8153280da 250548 libservlet3.1-java-doc_8.0.14-1+deb8u15_all.deb 1e7f9bc6c6e743b8a73c12b8673338e735a0c9f8 38388 tomcat8-admin_8.0.14-1+deb8u15_all.deb 42cdd479ca7f71dae04ceeff47f721063d3dd89f 196858 tomcat8-examples_8.0.14-1+deb8u15_all.deb ccd0f46e45c9329b54ff7ee631361c9247450cd1 692406 tomcat8-docs_8.0.14-1+deb8u15_all.deb Checksums-Sha256: e654d15fcb648124fe2b65efc35992565895683b998058bf4a5852ba85766cbf 2517 tomcat8_8.0.14-1+deb8u15.dsc b2d01e501c0d738befa1abf95d988c01112acbb62d1adbeb7f65901e7d7b4cee 92272 tomcat8_8.0.14-1+deb8u15.debian.tar.xz 791eff670cb1e0177bb3dd0958528836ea8dd345502450c4003a81d67d54f50d 60006 tomcat8-common_8.0.14-1+deb8u15_all.deb dfe22f4b6fce1e38128cce6b87a770c32ae464cc9667b06d1fe5910ff5ab45c9 49564 tomcat8_8.0.14-1+deb8u15_all.deb d07ee0c79bf07ba93f7cf47c9747a9fb231edb7230e58d2942914357999f42f5 37050 tomcat8-user_8.0.14-1+deb8u15_all.deb ae5d19db78b5d7540c95ab22f9456758a08be9426e952e3bf0b01f0338672376 4594576 libtomcat8-java_8.0.14-1+deb8u15_all.deb c480aa39e2896cf43a9ccd433242bcef7b03da11b14089eb85f70ce415e3683b 394400 libservlet3.1-java_8.0.14-1+deb8u15_all.deb 93b0aa28890ca0f8c48a8e5ec68cd6c366854ccf8c469940d252b49a2ed7596f 250548 libservlet3.1-java-doc_8.0.14-1+deb8u15_all.deb f620aba9a6b8cd65feb6ae4689546c9ba73297087dd52672e403ca653c3e4f70 38388 tomcat8-admin_8.0.14-1+deb8u15_all.deb 75de37a1fe40dc3661ee4a1f3df6aac97529f4b9791f45223a0bc3ca7203e385 196858 tomcat8-examples_8.0.14-1+deb8u15_all.deb db8dcd994f5981e4a16409efa39ade4f17b3cb1a523cac2513b23f53c1e056c0 692406 tomcat8-docs_8.0.14-1+deb8u15_all.deb Files:
Accepted atril 1.8.1+dfsg1-4+deb8u2 (source all amd64) into oldoldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 13 Aug 2019 13:37:47 +0200 Source: atril Binary: atril atril-dbg atril-common libatrilview3 libatrilview-dev libatrilview3-dbg libatrildocument3 libatrildocument-dev libatrildocument3-dbg Architecture: source all amd64 Version: 1.8.1+dfsg1-4+deb8u2 Distribution: jessie-security Urgency: medium Maintainer: MATE Packaging Team Changed-By: Emilio Pozuelo Monfort Description: atril - MATE document viewer atril-common - MATE document viewer (common files) atril-dbg - MATE document viewer (debugging symbols) libatrildocument-dev - MATE document rendering library (development files) libatrildocument3 - MATE document rendering library libatrildocument3-dbg - MATE document rendering library (debugging symbols) libatrilview-dev - MATE document viewing library (development files) libatrilview3 - MATE document viewing library libatrilview3-dbg - MATE document viewing library (debugging symbols) Changes: atril (1.8.1+dfsg1-4+deb8u2) jessie-security; urgency=medium . * Non-maintainer upload by the LTS Team. * CVE-2017-1000159: command injection via filename when printing from DVI to PDF. * CVE-2019-1010006: integer overflow in tiff backend. * CVE-2019-11459: unhandled errors in tiff backend can lead to uninitialized memory use. Checksums-Sha1: d92148596c47a9d7fdb4c36ea5437040189bea3a 2978 atril_1.8.1+dfsg1-4+deb8u2.dsc 1373d4119fe224d8a6515fd3a4d8a56f0ef00c4a 894092 atril_1.8.1+dfsg1.orig.tar.xz 4467507cddff98cbfa7bdfe4c847e9a2ba7660f2 15652 atril_1.8.1+dfsg1-4+deb8u2.debian.tar.xz 282a56ba98148eb389df744770f24c99e62d1222 392124 atril-common_1.8.1+dfsg1-4+deb8u2_all.deb a55e9e184d5b4849f57e43dd31dec567a589a254 152672 atril_1.8.1+dfsg1-4+deb8u2_amd64.deb 826d281d0cbf92f336a4f5e389657e6256df97a6 707342 atril-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb ec87a9048d0f55eee2934fde723f1be5d927bac3 93928 libatrilview3_1.8.1+dfsg1-4+deb8u2_amd64.deb 9a9e9fe5ef1e20c92211022dbb0b43131c620834 14154 libatrilview-dev_1.8.1+dfsg1-4+deb8u2_amd64.deb cba3e0dd73be18dbf8eb99abc23b6dcba947f764 310772 libatrilview3-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb d8f589626753fa02ddae888625f1919c31d3aba5 183716 libatrildocument3_1.8.1+dfsg1-4+deb8u2_amd64.deb 135539a3bc4dd291893aa0769f112b7ee74dc3e4 24246 libatrildocument-dev_1.8.1+dfsg1-4+deb8u2_amd64.deb ba55cc441a7411e45dca14ca7577d285f274feb1 549524 libatrildocument3-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb Checksums-Sha256: 5aaf2b063832b91c860a747da84043d06846c4b01fcfe1e1c0f072797963efa0 2978 atril_1.8.1+dfsg1-4+deb8u2.dsc 4405c1ccbfa41870aaed97701d6be28cc487f1411788ad6f77d104ce9cf6ecc1 894092 atril_1.8.1+dfsg1.orig.tar.xz 144b7e2becb1bd9cfffbdd9dc25c41e5784f0f7526ded59da3bcca30a9fabd89 15652 atril_1.8.1+dfsg1-4+deb8u2.debian.tar.xz b4d2823b17ed4caf7f3f64e44cb385ab366eb7bec4ea73254bc895bb56970734 392124 atril-common_1.8.1+dfsg1-4+deb8u2_all.deb 3b8fe6f54ebbd2b2f1d04438068d898b43644cb4afa894aaff9a67176a171c21 152672 atril_1.8.1+dfsg1-4+deb8u2_amd64.deb 77b886c26043a37d244981c932d662d159703b1760e1e01cfc9022fc8731870d 707342 atril-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb ac97fdcafc89a664e41ff3fa9f4da790af3df657600af8e23d5e60eb159a5e44 93928 libatrilview3_1.8.1+dfsg1-4+deb8u2_amd64.deb 0fc51e3c336dbce38f49f811a4df47d14281f4b70d056188d3ecf3782787db39 14154 libatrilview-dev_1.8.1+dfsg1-4+deb8u2_amd64.deb f828eaf05262c3875053e3c8a2f47838a9d39c445e058c56f7fe129196504c47 310772 libatrilview3-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb fc7a071cc9529d6246d7e66500d64be237e61b2b14f105bfa4ccf9561dab1d93 183716 libatrildocument3_1.8.1+dfsg1-4+deb8u2_amd64.deb 41ce62306f452b1f5c367f28dd51484d02de807b24436629d5801046c6e1d6c7 24246 libatrildocument-dev_1.8.1+dfsg1-4+deb8u2_amd64.deb 3de36d9ebbaf8a71a24b555647bf50795ff22d03129e319897ef39d73de8913e 549524 libatrildocument3-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb Files: d6aee64b06d81ad69044b9715916e10f 2978 x11 optional atril_1.8.1+dfsg1-4+deb8u2.dsc 44df9fcc478f90ad483b1bd32dd2a67a 894092 x11 optional atril_1.8.1+dfsg1.orig.tar.xz 06720f34dcd99bbc2513a458b5e7f095 15652 x11 optional atril_1.8.1+dfsg1-4+deb8u2.debian.tar.xz cd8e9c8a053a9b3640120e99337d78ab 392124 x11 optional atril-common_1.8.1+dfsg1-4+deb8u2_all.deb 10810e5422e2570477003adf8be5700f 152672 x11 optional atril_1.8.1+dfsg1-4+deb8u2_amd64.deb c42d69c3539f8c13d5016948450034ae 707342 debug extra atril-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb d0d5dd07c099ee08326a6a949cdce391 93928 libs optional libatrilview3_1.8.1+dfsg1-4+deb8u2_amd64.deb dd617258647535c622bc342e6c4b764f 14154 libdevel optional libatrilview-dev_1.8.1+dfsg1-4+deb8u2_amd64.deb 9559eafdecec00e27842f145ce936370 310772 debug extra libatrilview3-dbg_1.8.1+dfsg1-4+deb8u2_amd64.deb 3d1f222ffa20189bb9ae5071ac4f4907 183716 libs optional libatrildocument3_1.8.1+dfsg1-4+deb8u2_amd64.deb 6a51f1611f5aba67ade7bca0988b5297 24246 libdevel optional libatrildocument-dev_1.8.1+dfsg1-4+deb8u2_amd64.deb
Accepted evince 3.14.1-2+deb8u3 (source all amd64) into oldoldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 13 Aug 2019 12:04:27 +0200 Source: evince Binary: evince evince-dbg evince-gtk evince-common libevdocument3-4 libevview3-3 libevince-dev gir1.2-evince-3.0 Architecture: source all amd64 Version: 3.14.1-2+deb8u3 Distribution: jessie-security Urgency: medium Maintainer: Debian GNOME Maintainers Changed-By: Emilio Pozuelo Monfort Description: evince - Document (PostScript, PDF) viewer evince-common - Document (PostScript, PDF) viewer - common files evince-dbg - Document (PostScript, PDF) viewer - debugging symbols evince-gtk - Document (PostScript, PDF) viewer (GTK+ version) gir1.2-evince-3.0 - GObject introspection data for the evince libraries libevdocument3-4 - Document (PostScript, PDF) rendering library libevince-dev - Document (PostScript, PDF) rendering library - development files libevview3-3 - Document (PostScript, PDF) rendering library - Gtk+ widgets Changes: evince (3.14.1-2+deb8u3) jessie-security; urgency=medium . * CVE-2017-1000159: command injection via filename when printing from DVI to PDF. * CVE-2019-1010006: integer overflow in tiff backend. * CVE-2019-11459: unhandled errors in tiff backend can lead to uninitialized memory use. * 0001-check-for-failed-rendering-jobs.patch: fix null pointer dereference if a redering job fails. Checksums-Sha1: 76f062e9700cffacd38e0391f9c7029d32d1124e 3191 evince_3.14.1-2+deb8u3.dsc 42760595375825343bdfb1e025a270c53d60537f 3082612 evince_3.14.1.orig.tar.xz d43bd7d749dc797a95d0fd140031f33ee15c5bb8 29276 evince_3.14.1-2+deb8u3.debian.tar.xz 61ad545b70cc94c9a7352377765b43c07f3a1f8d 2183344 evince-common_3.14.1-2+deb8u3_all.deb 879b6613f81a2b7dc7907aeaec536736a54d0eec 741934 evince_3.14.1-2+deb8u3_amd64.deb bc4019bd32f6a9d629db901652b0713cf6a4ba4a 1700694 evince-dbg_3.14.1-2+deb8u3_amd64.deb 0cf12cf4593cadbd5a445249abb6a60e2d0a9d25 737748 evince-gtk_3.14.1-2+deb8u3_amd64.deb d18dfdcdf9f17b18c6483dc76aa23be7419d79a5 774098 libevdocument3-4_3.14.1-2+deb8u3_amd64.deb f345112775bd4bc10b7ff015c6d5f258200898d0 708788 libevview3-3_3.14.1-2+deb8u3_amd64.deb d1698b858a60561bf27832bf6bb771b3b576cc09 868868 libevince-dev_3.14.1-2+deb8u3_amd64.deb a96d3a8382348d34e21653ee145908df8a8b30a0 617080 gir1.2-evince-3.0_3.14.1-2+deb8u3_amd64.deb Checksums-Sha256: c869bbba238ea78222b705c85e114c280c22605585a61a7276a6d4c3e900f496 3191 evince_3.14.1-2+deb8u3.dsc 13ec728d6957aa18ba21a3a66504dd52b8607596337f30f0908b62b5fcc14507 3082612 evince_3.14.1.orig.tar.xz 5e38d43c5d77fa3756451d90a63742bd6e392c549f02c2323c34607fe609e8dd 29276 evince_3.14.1-2+deb8u3.debian.tar.xz afb1738b3bda479a7e1591fd851dd91bd90705488e64e6364f2346a01db5f32e 2183344 evince-common_3.14.1-2+deb8u3_all.deb 52e72a3fdec54845433c300f167f40a555f5a418c10600ee416a23ef0514324e 741934 evince_3.14.1-2+deb8u3_amd64.deb 905bfb0fba5909181d3829d15e6b236dd52289d194a6585ed9efabf5476d4bfd 1700694 evince-dbg_3.14.1-2+deb8u3_amd64.deb 9fc714ccb1a1e0d084bf2e5aa1a6998c73d9e35ff4dc4853def124c98d0974e8 737748 evince-gtk_3.14.1-2+deb8u3_amd64.deb 66b3002cf3d1623c570d482f99c80afd1ef4b8a112f1f9874c69445fbd4bbfda 774098 libevdocument3-4_3.14.1-2+deb8u3_amd64.deb 5822ca06fffb42906011f6b100deae10392d528fda502e5f241cebd18c35d1e5 708788 libevview3-3_3.14.1-2+deb8u3_amd64.deb d141a72e0cab394436f3b96beaf8a6e1f58da0faf0863a2bfdc70fe8316162da 868868 libevince-dev_3.14.1-2+deb8u3_amd64.deb e995db89dd8eb72a7e9b51b5624a9858701c3f7d315cfc286469e4777a2188e8 617080 gir1.2-evince-3.0_3.14.1-2+deb8u3_amd64.deb Files: 801235cefdbdabd267c2f50854f706e3 3191 gnome optional evince_3.14.1-2+deb8u3.dsc 20575f13ce1a0bf31f085d2430848c40 3082612 gnome optional evince_3.14.1.orig.tar.xz 7b6f6a4985971ef855e16aa59dd4aa3e 29276 gnome optional evince_3.14.1-2+deb8u3.debian.tar.xz 99660b6ffbd496f0683ec27a0e70967c 2183344 gnome optional evince-common_3.14.1-2+deb8u3_all.deb a329d65c22f61f2c343ea668d035262d 741934 gnome optional evince_3.14.1-2+deb8u3_amd64.deb b7af1c3a11eabbf5df6df232572a8e4f 1700694 debug extra evince-dbg_3.14.1-2+deb8u3_amd64.deb 168ad1aa9cbd06dde6c973fbbfd17b40 737748 x11 optional evince-gtk_3.14.1-2+deb8u3_amd64.deb 33b8c111ab848fc10cc339acc6d1ef69 774098 libs optional libevdocument3-4_3.14.1-2+deb8u3_amd64.deb d11aa8ff4803a101ba4d9cfa9e48347f 708788 libs optional libevview3-3_3.14.1-2+deb8u3_amd64.deb ea14f512803534861d395287d683f2c6 868868 libdevel optional libevince-dev_3.14.1-2+deb8u3_amd64.deb d2c24f40655b878fd8094e75bd822fd1 617080 introspection optional gir1.2-evince-3.0_3.14.1-2+deb8u3_amd64.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAl1SnHYACgkQnUbEiOQ2 gwIbpRAAu/cMGB82/si5FFtJ4CAEvOP5NJHPoV4CUuKk/MhSTSoIL1cVqv6mYVT9 FtZnJEj3QVmfhr5zU5QFlFhbmNbtLjh9s1DlEZDHPLOEhGd7uNx6tM840mLenlXN PTrQ32v0reE5NPe5RYFEyRIjEElzSWpAYcr/lCGrXEbmMLGvkDd0qvgwD8VdAzLt YWBW9tbDqofoZdlZt2BsYLPkD/2Q+FBGUak+mYgOYCpoO6ta2mvQ59jTNudP6WDD
Accepted ghostscript 9.26a~dfsg-0+deb8u4 (source all amd64) into oldoldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 13 Aug 2019 10:08:53 +0200 Source: ghostscript Binary: ghostscript ghostscript-x ghostscript-doc libgs9 libgs9-common libgs-dev ghostscript-dbg Architecture: source all amd64 Version: 9.26a~dfsg-0+deb8u4 Distribution: jessie-security Urgency: medium Maintainer: Debian Printing Team Changed-By: Emilio Pozuelo Monfort Description: ghostscript - interpreter for the PostScript language and for PDF ghostscript-dbg - interpreter for the PostScript language and for PDF - Debug symbo ghostscript-doc - interpreter for the PostScript language and for PDF - Documentati ghostscript-x - interpreter for the PostScript language and for PDF - X11 support libgs-dev - interpreter for the PostScript language and for PDF - Development libgs9 - interpreter for the PostScript language and for PDF - Library libgs9-common - interpreter for the PostScript language and for PDF - common file Changes: ghostscript (9.26a~dfsg-0+deb8u4) jessie-security; urgency=medium . * Non-maintainer upload by the LTS Team. * protect use of .forceput with executeonly (CVE-2019-10216) Checksums-Sha1: dc2151d92470803c71e8b7e3ba8d775b80821577 2885 ghostscript_9.26a~dfsg-0+deb8u4.dsc 3bc2fd605063bfd1dcd481b54a81159cb1f33a7e 17614652 ghostscript_9.26a~dfsg.orig.tar.xz a9d23e556540461abc60c42bf899b79936123691 121216 ghostscript_9.26a~dfsg-0+deb8u4.debian.tar.xz 2f6c3dbac59183739ac6f6d5bc870d5f4a9694e8 3484228 ghostscript-doc_9.26a~dfsg-0+deb8u4_all.deb caa34e38d3b36b8cf4e6210f7885ab304b9faf51 5146144 libgs9-common_9.26a~dfsg-0+deb8u4_all.deb a42df86c23393efc2deb3ed63cd583c7daa4ab58 98758 ghostscript_9.26a~dfsg-0+deb8u4_amd64.deb fa09f2f21608acae6b4a9ade3783bbddf3778551 94202 ghostscript-x_9.26a~dfsg-0+deb8u4_amd64.deb 1726e3484ac72b21a14963b536ad3f2d092b44d9 2217092 libgs9_9.26a~dfsg-0+deb8u4_amd64.deb 0fa36d56d70c64a28bb0d9bd28a5e2fde6d37a30 76404 libgs-dev_9.26a~dfsg-0+deb8u4_amd64.deb 7e152159f315f2028997cfccda455d17abc49a38 5761092 ghostscript-dbg_9.26a~dfsg-0+deb8u4_amd64.deb Checksums-Sha256: 6b7ae6d401c455c47beea65fe691579ca631914d574a50af72b0d8904888166f 2885 ghostscript_9.26a~dfsg-0+deb8u4.dsc 1c3647c42a3f894df22a7a12473f60ff4be38c38ed97232ecfab9b7f3a4fc8f4 17614652 ghostscript_9.26a~dfsg.orig.tar.xz aad9308774deb0dc0f3722799c40d04e5fa2ad50209cf535c323dbea73e41988 121216 ghostscript_9.26a~dfsg-0+deb8u4.debian.tar.xz a823fb30503689a2b0bb4e73e6ee71f80072458dc503503005abc78031f50c35 3484228 ghostscript-doc_9.26a~dfsg-0+deb8u4_all.deb 340f8cb41d9f0eacb2562e011d78fa00423a0eea4d3c087b26ec60da45df2f8c 5146144 libgs9-common_9.26a~dfsg-0+deb8u4_all.deb 1b0aa7c5dd227876b6ea416c831fc61868e0bc447a304c44f95fca1c74763f0c 98758 ghostscript_9.26a~dfsg-0+deb8u4_amd64.deb ef48c4a3e5cb07bc54abed5565343739a3385b3c822067e98b8860239e955184 94202 ghostscript-x_9.26a~dfsg-0+deb8u4_amd64.deb 97328f90a96e87a301842bca564d4e956e368dc8d0931fad6d531a485de1204a 2217092 libgs9_9.26a~dfsg-0+deb8u4_amd64.deb 54a274f5fd37becc85270f80044f47eaad886ac9dec88c42fb9a7023c9e4270e 76404 libgs-dev_9.26a~dfsg-0+deb8u4_amd64.deb 35e4cd83fb421e54401969a7f611913443a76635073157dcabd864559780089f 5761092 ghostscript-dbg_9.26a~dfsg-0+deb8u4_amd64.deb Files: d6a09d1d55ee8bbae59299e12db98492 2885 text optional ghostscript_9.26a~dfsg-0+deb8u4.dsc 93cc537385e51eee94b96102616e338a 17614652 text optional ghostscript_9.26a~dfsg.orig.tar.xz 52c9d2c1f4d89fa7001cec9989e67dce 121216 text optional ghostscript_9.26a~dfsg-0+deb8u4.debian.tar.xz dcd00747942761d5ab23e83b37b8cd10 3484228 doc optional ghostscript-doc_9.26a~dfsg-0+deb8u4_all.deb abc92bc5a46492edd84453e5fdce7af2 5146144 libs optional libgs9-common_9.26a~dfsg-0+deb8u4_all.deb 06c9d440effde3cb9e371e7100a798a2 98758 text optional ghostscript_9.26a~dfsg-0+deb8u4_amd64.deb f343d2d717d82d1b5ddb4dabe0954491 94202 text optional ghostscript-x_9.26a~dfsg-0+deb8u4_amd64.deb c9bac2e4d423538650ebf01b285c5158 2217092 libs optional libgs9_9.26a~dfsg-0+deb8u4_amd64.deb 92fbdcb8a52418663079a4d2c29001bd 76404 libdevel optional libgs-dev_9.26a~dfsg-0+deb8u4_amd64.deb f5734c32ab204521b3033b15e7b7e89a 5761092 debug extra ghostscript-dbg_9.26a~dfsg-0+deb8u4_amd64.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAl1SeSEACgkQnUbEiOQ2 gwK7Yg/+JKjWCL1pcmp8O7KjT6o8ecoZVjqEx/yXd1R1khPOOyFWuUoxwdcZpHdq cpD+fuHkeGJReDTZMIxbb9rAs1K41e6SdVlraBcoHAmkI6aQqvNesD2Uhu3Q4YBn bhWPFVHH7ASqlyYeKxD4y/4A4hGawvFnC1PiKrkzvJzf6MYRfT7jc3JE57UCPaxR mNUSkji5817vG8Usm0VqCUkumqJwuY6xhagFKZ4LeWWs3QXjBYGL8rYLyxqK6c8Z DlNBGdMtVS6NQI0ialNqlXGaoOXvMy3cxGqF9Euh0mdqmo13NiAKgms/4/2z/R3N DIgcEoCKVrcEASOlsVJJLzMcDYa744ZAHJRJu15UaV/1l717QWj5ULsBL+Errdmh +aXlXGczjrOkMKQFNIHrveePDZWeqDbJQkbJ7bnxDZnBPe1BU8hnaXWZb6xHPaot VMZglaqVwTyQpUN1xJ15z48cDXfMEHFPUosyReJeXegIT+IqTzmrgXMOtBqLaVga D8M1TQmQ7oTjwb2ONLbYKo/AcsLedK7ceHw9DvBfJMXjTOcBEioaOlXUdoTdEJqQ zHebey4DzTSJjJYTJxhrWIKiQdmIVvhl+ANA6VFvbB3rFZt+bHdMtwpsgIybdkNy
