Format: 1.8 Date: Fri, 29 Jun 2018 11:26:58 -0400 Source: zziplib Binary: zziplib-bin libzzip-0-13 libzzip-dev Architecture: armhf Version: 0.13.62-3.1ubuntu0.18.04.1 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libzzip-0-13 - library providing read access on ZIP-archives - library libzzip-dev - library providing read access on ZIP-archives - development zziplib-bin - library providing read access on ZIP-archives - binaries Changes: zziplib (0.13.62-3.1ubuntu0.18.04.1) bionic-security; urgency=medium . * SECURITY UPDATE: invalid mem access in zzip_disk_fread - debian/patches/CVE-2018-6381.patch: check sizes in zzip/memdisk.c. - CVE-2018-6381 * SECURITY UPDATE: alignment and bus errors in __zzip_fetch_disk_trailer - debian/patches/CVE-2018-6484.patch: check sizes in zzip/zip.c. - CVE-2018-6484 - CVE-2018-6541 - CVE-2018-6869 * SECURITY UPDATE: bus error in zzip_disk_findfirst - debian/patches/CVE-2018-6540.patch: check endbuf in zzip/mmapped.c. - CVE-2018-6540 * SECURITY UPDATE: invalid memory dereference - debian/patches/CVE-2018-7725.patch: check zlib space in zzip/memdisk.c, zzip/mmapped.c. - CVE-2018-7725 * SECURITY UPDATE: bus error in __zzip_parse_root_directory - debian/patches/CVE-2018-7726-1.patch: check rootseek and rootsize in zzip/zip.c. - debian/patches/CVE-2018-7726-2.patch: check rootseek in zzip/zip.c. - debian/patches/CVE-2018-7726-3.patch: check zz_rootsize in zzip/zip.c. - CVE-2018-7726 Checksums-Sha1: 3b4ac71cfa36c555453cc0853f9a5c11a8bfb73d 6624 libzzip-0-13-dbgsym_0.13.62-3.1ubuntu0.18.04.1_armhf.ddeb 97b6c659943694651e36b74c7f477af6ca0d3406 22268 libzzip-0-13_0.13.62-3.1ubuntu0.18.04.1_armhf.deb 372d1787872346332c310cc17db421c6452fad02 77372 libzzip-dev_0.13.62-3.1ubuntu0.18.04.1_armhf.deb c3f873f900706fc593fe52a4068434030bc0a261 5208 zziplib-bin-dbgsym_0.13.62-3.1ubuntu0.18.04.1_armhf.ddeb 18f30f10a8bf992cf55c66e74df63d892ae89491 10932 zziplib-bin_0.13.62-3.1ubuntu0.18.04.1_armhf.deb 199309038f7bb8dc7662b6c0df659fe59e6c1f8f 6639 zziplib_0.13.62-3.1ubuntu0.18.04.1_armhf.buildinfo Checksums-Sha256: 37c7195c6489dae4747c3db7b94e86392bb67284b526500fcd6cb242406c0b28 6624 libzzip-0-13-dbgsym_0.13.62-3.1ubuntu0.18.04.1_armhf.ddeb 64e6b80cdefc3d9f733a2676fe73a0d94a3b6a24d68e47853e10419672ea7a5d 22268 libzzip-0-13_0.13.62-3.1ubuntu0.18.04.1_armhf.deb 7c2bd31621b543a6233eb3441fdb70e05509baf68673431093a0228d6da78585 77372 libzzip-dev_0.13.62-3.1ubuntu0.18.04.1_armhf.deb dc49ec18fae8dafd25c2f7bbd79298cbb01fec5f0c03d815e077663ab2be1f64 5208 zziplib-bin-dbgsym_0.13.62-3.1ubuntu0.18.04.1_armhf.ddeb fdac46cf51dbd6527165d88dbcc44f82d2af5acc1922a12c510aaf8ba28ef91f 10932 zziplib-bin_0.13.62-3.1ubuntu0.18.04.1_armhf.deb 1f7f524fcd25f5705a263bce064594777aa609413cc8c1a0c82893c0d1ab8513 6639 zziplib_0.13.62-3.1ubuntu0.18.04.1_armhf.buildinfo Files: af6bfead9b08e1bd74224bcc79d7c16a 6624 debug optional libzzip-0-13-dbgsym_0.13.62-3.1ubuntu0.18.04.1_armhf.ddeb d61b2b979b2ee551c42fc137fadaef86 22268 libs optional libzzip-0-13_0.13.62-3.1ubuntu0.18.04.1_armhf.deb acbb5c25e99c19174cb4f16ebbe5f0b3 77372 libdevel optional libzzip-dev_0.13.62-3.1ubuntu0.18.04.1_armhf.deb 853c9e145017c1d927d14dbd75c68f7f 5208 debug optional zziplib-bin-dbgsym_0.13.62-3.1ubuntu0.18.04.1_armhf.ddeb b87317304138ce9f74f8a5901d870451 10932 utils optional zziplib-bin_0.13.62-3.1ubuntu0.18.04.1_armhf.deb 139dc02c6ac609f631f3f459eb4246f3 6639 libs optional zziplib_0.13.62-3.1ubuntu0.18.04.1_armhf.buildinfo Original-Maintainer: Scott Howard