-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 28 Jul 2008 18:57:39 +0200 Source: cupsys Binary: libcupsys2-dev cupsys libcupsys2 libcupsimage2 cupsys-common cupsys-client cupsys-dbg cupsys-bsd libcupsys2-gnutls10 libcupsimage2-dev Architecture: sparc Version: 1.2.7-4etch4 Distribution: stable-security Urgency: high Maintainer: Debian Build Daemon Changed-By: Martin Pitt Description: cupsys - Common UNIX Printing System(tm) - server cupsys-bsd - Common UNIX Printing System(tm) - BSD commands cupsys-client - Common UNIX Printing System(tm) - client programs (SysV) cupsys-dbg - Common UNIX Printing System(tm) - debugging symbols libcupsimage2 - Common UNIX Printing System(tm) - image libs libcupsimage2-dev - Common UNIX Printing System(tm) - image development files libcupsys2 - Common UNIX Printing System(tm) - libs libcupsys2-dev - Common UNIX Printing System(tm) - development files Closes: 476305 Changes: cupsys (1.2.7-4etch4) stable-security; urgency=high . * Add 74_CVE-2008-0053.dpatch: Fix buffer overflows in filter/hpgl-input.c by crated HP-GL files; possibly exploitable to run arbitrary code. (CVE-2008-0053, upstream SVN trunk r7219) * Add 75_CVE-2008-1373.dpatch: Fix buffer overflow in GIF filter by crafted images with large code_size value; potentially exploitable to run arbitrary code. (CVE-2008-1373, STR#2765, upstream svn trunk r7420) * Add 76_CVE-2008-1722.dpatch: Fix integer overflows in PNG filter by crafted images with large dimensions; potentially exploitable to run arbitrary code. (CVE-2008-1722, STR #2790, svn trunk r7437) (Closes: #476305) Files: f33bda24ec7774227b3bdb3dddcf1c46 158816 libs optional libcupsys2_1.2.7-4etch4_sparc.deb 96aa28ac50548723754274f30db15379 84956 libs optional libcupsimage2_1.2.7-4etch4_sparc.deb 2bfd90bca7dbac40df73303f8e1e4b6f 1562092 net optional cupsys_1.2.7-4etch4_sparc.deb 7066d103f739cd570fd141aa4fa780f6 78516 net optional cupsys-client_1.2.7-4etch4_sparc.deb 5f5faa6504275ed43f4a55787519fdfe 139570 libdevel optional libcupsys2-dev_1.2.7-4etch4_sparc.deb 47ce5271662e6b980e34badfc9689009 51754 libdevel optional libcupsimage2-dev_1.2.7-4etch4_sparc.deb c4e4289091dc19e5fbf7a6937ffb36f7 36032 net extra cupsys-bsd_1.2.7-4etch4_sparc.deb 13a41c49f94085ca6a7f74a030506d3c 991408 libdevel extra cupsys-dbg_1.2.7-4etch4_sparc.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iQEVAwUBSJFxvGz0hbPcukPfAQLdpgf/SO+tVF1Qsuqjh7utSO5i8QLkciLWIZTw IN4IjR40DGs5OCoESMzSg41Bymh0iAsJR0a8Uw3c8hgNlDVgZAn5O9OsKuM0D7Ru s4ZHcsLxT+B1hyASCp+C57dBT++gajirZMA+6J1vCsq5qNBn5bekpFmqjiQZnIWm KLjNsqra38MLXUmoUquxN501C4kN2IdeBQQEWpxE3p3ZlGLCULkJ4+7jf1yqLQE7 RcfhKb6nWJwW5N6xYfsy2HTX+1J0JM3GQJH4BeLKS0rcxfAM9v+UXS9l67LGnQP1 zSu5fT8qxZ8JUlW6z9RQX2Rbxk/gItIsqCN8M+Id9NM76l4cJHPlkw== =xvQe -----END PGP SIGNATURE-----