Format: 1.8
Date: Fri, 08 Apr 2022 07:05:45 -0400
Source: gzip
Binary: gzip
Architecture: ppc64el
Version: 1.10-0ubuntu4.1
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-025.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 gzip       - GNU compression utilities
Changes:
 gzip (1.10-0ubuntu4.1) focal-security; urgency=medium
 .
   * SECURITY UPDATE: arbitrary file override with crafted file names
     - debian/patches/CVE-2022-1271-1.patch: avoid exploit via multi-newline
       file names in zgrep.in.
     - debian/patches/CVE-2022-1271-2.patch: add test in tests/Makefile.am,
       tests/zgrep-abuse.
     - debian/patches/CVE-2022-1271-3.patch: port to POSIX sed in zgrep.in.
     - debian/patches/CVE-2022-1271-4.patch: optimize out a grep in
       gzexe.in.
     - debian/patches/CVE-2022-1271-5.patch: use C locale more often in
       gzexe.in, sample/zfile, zdiff.in, zgrep.in, znew.in.
     - debian/patches/CVE-2022-1271-6.patch: fix "binary file matches"
       mislabeling in tests/Makefile.am, tests/zgrep-binary, zgrep.in.
     - debian/rules: fix permissions on new test scripts.
     - CVE-2022-1271
Checksums-Sha1:
 060cd2609e18bf2742e3c69080edb6d0fa65332d 122252 gzip-dbgsym_1.10-0ubuntu4.1_ppc64el.ddeb
 27c0c6dc42327b7c9c7d5e95a913bf9ac1f61b23 5717 gzip_1.10-0ubuntu4.1_ppc64el.buildinfo
 21bcd5d070efc9fdbd9434f85404d10ee7fb479d 103128 gzip_1.10-0ubuntu4.1_ppc64el.deb
Checksums-Sha256:
 ed7f097b37350937497c881e320b0297c0ff50f5bc599ddf81e5d08363782ca8 122252 gzip-dbgsym_1.10-0ubuntu4.1_ppc64el.ddeb
 e45d4e5097fc2af9f40c9789a7c75eca478d1b89171cac7d6006e176b180dd05 5717 gzip_1.10-0ubuntu4.1_ppc64el.buildinfo
 cc790b7f7b16438a9d993eb71bad9e2fdaea6318f585986376b484f51c3d78ea 103128 gzip_1.10-0ubuntu4.1_ppc64el.deb
Files:
 15f05f2f1452d5a98d574252b7b0f7ce 122252 debug optional gzip-dbgsym_1.10-0ubuntu4.1_ppc64el.ddeb
 ed31de8c0676989a1a3d492c3e05ecee 5717 utils required gzip_1.10-0ubuntu4.1_ppc64el.buildinfo
 2fe20f93dcbc5516eb90e99423aea6d2 103128 utils required gzip_1.10-0ubuntu4.1_ppc64el.deb
Original-Maintainer: Bdale Garbee <bdale@gag.com>