Format: 1.8
Date: Tue, 26 Oct 2021 08:40:24 -0400
Source: libslirp
Binary: libslirp-dev libslirp0
Built-For-Profiles: noudeb
Architecture: amd64
Version: 4.4.0-1ubuntu0.21.10.1
Distribution: impish
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-040.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libslirp-dev - General purpose TCP-IP emulator library (development files)
 libslirp0  - General purpose TCP-IP emulator library
Changes:
 libslirp (4.4.0-1ubuntu0.21.10.1) impish-security; urgency=medium
 .
   * SECURITY UPDATE: data leak in bootp_input()
     - debian/patches/CVE-2021-3592-1.patch: add mtod_check() to src/mbuf.*.
     - debian/patches/CVE-2021-3592-2.patch: limit vendor-specific area to
       input packet memory buffer in src/bootp.*, src/mbuf.*.
     - debian/patches/CVE-2021-3592-3.patch: check bootp_input buffer size
       in src/bootp.c.
     - debian/patches/CVE-2021-3592-4.patch: fix regression in dhcp in
       src/bootp.c.
     - CVE-2021-3592
   * SECURITY UPDATE: data leak in udp6_input()
     - debian/patches/CVE-2021-3593.patch: check udp6_input buffer size in
       src/udp6.c.
     - CVE-2021-3593
   * SECURITY UPDATE: data leak in udp_input()
     - debian/patches/CVE-2021-3594.patch: check upd_input buffer size in
       src/udp.c.
     - CVE-2021-3594
   * SECURITY UPDATE: data leak in tftp_input()
     - debian/patches/CVE-2021-3595-1.patch: check tftp_input buffer size in
       src/tftp.c.
     - debian/patches/CVE-2021-3595-2.patch: introduce a header structure in
       src/tftp.*.
     - CVE-2021-3595
Checksums-Sha1:
 1a3af3839f2c74fff9adc6e0b0004cffc51bdee5 5172 libslirp-dev_4.4.0-1ubuntu0.21.10.1_amd64.deb
 39584d494bf20506173037ba69d6b827d7e1caa5 164254 libslirp0-dbgsym_4.4.0-1ubuntu0.21.10.1_amd64.ddeb
 feaaf31dfe9e3e8d38fb71c6833cf687d21a7886 58202 libslirp0_4.4.0-1ubuntu0.21.10.1_amd64.deb
 f080523109a39088ef434a74fb52ad3fa2c01baf 7713 libslirp_4.4.0-1ubuntu0.21.10.1_amd64.buildinfo
Checksums-Sha256:
 c12ba591537bbc337883a37875ee3ace2ce3899c5fc87c63b34aaca7d498915a 5172 libslirp-dev_4.4.0-1ubuntu0.21.10.1_amd64.deb
 05f009476e0efc5f4273ec9f9e337ff48800f6fa72b5a2cd3215114faf8b4ca6 164254 libslirp0-dbgsym_4.4.0-1ubuntu0.21.10.1_amd64.ddeb
 8b0e4f0467c3ab4a1edc2d4b4be5bca18019b20a41db4959a57707e96d380c3a 58202 libslirp0_4.4.0-1ubuntu0.21.10.1_amd64.deb
 a1a29fab0191c1bcf7eb880bdf98233fd44a3ad38806e4a43fde5d60e9d7e412 7713 libslirp_4.4.0-1ubuntu0.21.10.1_amd64.buildinfo
Files:
 a8121a7ffe1120388f401949454e1b82 5172 libdevel optional libslirp-dev_4.4.0-1ubuntu0.21.10.1_amd64.deb
 56bcb38491dd2959f840b6e6a19ffa43 164254 debug optional libslirp0-dbgsym_4.4.0-1ubuntu0.21.10.1_amd64.ddeb
 85a539a321a1ab730a97db80f2634716 58202 libs optional libslirp0_4.4.0-1ubuntu0.21.10.1_amd64.deb
 c56e1463adaa41e21fa0ff026bdbef3c 7713 net optional libslirp_4.4.0-1ubuntu0.21.10.1_amd64.buildinfo
Original-Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>