Format: 1.8
Date: Wed, 24 Jul 2019 13:32:41 -0400
Source: libebml
Binary: libebml4v5 libebml-dev
Architecture: armhf
Version: 1.3.5-2ubuntu0.1
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-068.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libebml-dev - access library for the EBML format (development files)
 libebml4v5 - access library for the EBML format (shared library)
Changes:
 libebml (1.3.5-2ubuntu0.1) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: heap-based out of bounds read
     - debian/patches/CVE-2019-13615-1.patch: check the max size to read
       before actually reading in src/EbmlElement.cpp.
     - debian/patches/CVE-2019-13615-2.patch: do not output an element with
       size Unknown if it's not allowed in src/EbmlElement.cpp.
     - debian/patches/CVE-2019-13615-3.patch: exit the max size loop when
       there's nothing left possible to find in src/EbmlElement.cpp.
     - debian/patches/CVE-2019-13615-4.patch: rework the way we look at the
       end boundary when looking an element in a parent in
       src/EbmlElement.cpp.
     - CVE-2019-13615
Checksums-Sha1:
 1289993f28e071a3c455e3fca60071eb2d64a44b 71372 libebml-dev_1.3.5-2ubuntu0.1_armhf.deb
 7e53009ecbe933ddb3836748b23cdbd3a6864468 359028 libebml4v5-dbgsym_1.3.5-2ubuntu0.1_armhf.ddeb
 1d7bfa650cc26c27992d74af00c4864c328a2a9f 41092 libebml4v5_1.3.5-2ubuntu0.1_armhf.deb
 3a5474a5faecbbc2adcf9158c98eeb33997941ed 5568 libebml_1.3.5-2ubuntu0.1_armhf.buildinfo
Checksums-Sha256:
 4f066bca774410d8b5b87c0e70ee256028445f22b6200b917121bbd935f4cdc2 71372 libebml-dev_1.3.5-2ubuntu0.1_armhf.deb
 590089329799196d45a3d349e13cad4ceecba5b92f7592f7a3dfdb0b02bb2f48 359028 libebml4v5-dbgsym_1.3.5-2ubuntu0.1_armhf.ddeb
 6ff573f11820b3c3e83c4c4c06fb53c744020aeaaabd85e69c0ff423bbac20a5 41092 libebml4v5_1.3.5-2ubuntu0.1_armhf.deb
 cca0f5a2887fbee99e649a57b8675cc45c235e55db3efd497cf0e0af9a10dfec 5568 libebml_1.3.5-2ubuntu0.1_armhf.buildinfo
Files:
 a83e02eae7eecf05680c6d1392184a8e 71372 libdevel optional libebml-dev_1.3.5-2ubuntu0.1_armhf.deb
 fd954dc078e98cdccb3df05236dc880c 359028 debug optional libebml4v5-dbgsym_1.3.5-2ubuntu0.1_armhf.ddeb
 7cb38c920132d8b06f20a4ef8de04a97 41092 libs optional libebml4v5_1.3.5-2ubuntu0.1_armhf.deb
 b5bde1577cde719383fb0a7122eb45b5 5568 devel optional libebml_1.3.5-2ubuntu0.1_armhf.buildinfo
Original-Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org>