Publishing details

Published on 2017-11-13
Copied from ubuntu xenial in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot

Changelog

bchunk (1.2.0-12+deb8u1build0.16.04.1) xenial-security; urgency=medium

  * fake sync from Debian

bchunk (1.2.0-12+deb8u1) jessie-security; urgency=high

  * Non-maintainer upload.
  * Fix CVE-2017-15953, CVE-2017-15954 and CVE-2017-15955.
    bchunk was vulnerable to a heap-based buffer overflow with an resultant
    invalid free when processing a malformed CUE (.cue) file that may lead to
    the execution of arbitrary code or a application crash. (Closes: #880116)

 -- Marc Deslauriers <email address hidden>  Mon, 13 Nov 2017 09:05:57 -0500

Available diffs

diff from 1.2.0-12 (in Debian) to 1.2.0-12+deb8u1build0.16.04.1 (1.5 KiB)

Builds

Built packages

bchunk CD image format conversion from bin/cue to iso/cdr

Package files

bchunk_1.2.0-12+deb8u1build0.16.04.1.debian.tar.xz (5.4 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1.dsc (1.8 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_amd64.deb (11.8 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_arm64.deb (11.7 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_armhf.deb (11.8 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_i386.deb (12.1 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_powerpc.deb (12.1 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_ppc64el.deb (12.1 KiB)
bchunk_1.2.0-12+deb8u1build0.16.04.1_s390x.deb (12.2 KiB)
bchunk_1.2.0.orig.tar.gz (14.7 KiB)