Format: 1.8
Date: Fri, 14 Apr 2017 16:21:21 -0400
Source: libosip2
Binary: libosip2-11 libosip2-dev
Architecture: armhf
Version: 4.1.0-2.1
Distribution: eoan
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-002.buildd>
Changed-By: Antoine Beaupré <anarcat@debian.org>
Description:
 libosip2-11 - Session Initiation Protocol (SIP) library
 libosip2-dev - development files for the SIP library
Closes: 860287
Changes:
 libosip2 (4.1.0-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload to fix security issues (Closes: #860287)
   * CVE-2016-10324: In libosip2 in GNU oSIP 4.1.0, a malformed SIP message
     can lead to a heap buffer overflow in the osip_clrncpy() function
     defined in osipparser2/osip_port.c.
   * CVE-2016-10325: In libosip2 in GNU oSIP 4.1.0, a malformed SIP message
     can lead to a heap buffer overflow in the _osip_message_to_str()
     function defined in osipparser2/osip_message_to_str.c, resulting in a
     remote DoS.
   * CVE-2016-10326: In libosip2 in GNU oSIP 4.1.0, a malformed SIP message
     can lead to a heap buffer overflow in the osip_body_to_str() function
     defined in osipparser2/osip_body.c, resulting in a remote DoS.
   * CVE-2017-7853: In libosip2 in GNU oSIP 5.0.0, a malformed SIP message
     can lead to a heap buffer overflow in the msg_osip_body_parse()
     function defined in osipparser2/osip_message_parse.c, resulting in a
     remote DoS.
Checksums-Sha1:
 797abc12ae4b310b6d8cf5131be4398f8a91b7f4 59160 libosip2-11_4.1.0-2.1_armhf.deb
 ba3b1c3c35bbed02c9f9e043b1407b16ae898160 99196 libosip2-dev_4.1.0-2.1_armhf.deb
 db816a205077a4eff4870739125b997e11adbf6a 5078 libosip2_4.1.0-2.1_armhf.buildinfo
Checksums-Sha256:
 60bacd6cf552f43db41bb30538eef4a3875acecae7a89bca341dcaf222d479e3 59160 libosip2-11_4.1.0-2.1_armhf.deb
 a474f050e2f2c1c1296ae8e613e178d416740fefd6edc7cc006104a8951edad5 99196 libosip2-dev_4.1.0-2.1_armhf.deb
 bdf993905ee970317cca16df73a42d3b0e760f1c8c70695252f347bda93c5636 5078 libosip2_4.1.0-2.1_armhf.buildinfo
Files:
 772e142cb5a5e3e2370680de18cef1f7 59160 libs optional libosip2-11_4.1.0-2.1_armhf.deb
 f813936e29057ee36e704c9b8e2fa70e 99196 libdevel optional libosip2-dev_4.1.0-2.1_armhf.deb
 a635632f08b66108df8fe794dfc590c9 5078 comm optional libosip2_4.1.0-2.1_armhf.buildinfo