Format: 1.8
Date: Fri, 14 Oct 2022 18:33:00 -0300
Source: zlib
Binary: zlib1g zlib1g-dev
Built-For-Profiles: noudeb
Architecture: armhf
Version: 1:1.2.11.dfsg-2ubuntu9.2
Distribution: jammy
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-005.buildd>
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Description:
 zlib1g     - compression library - runtime
 zlib1g-dev - compression library - development
Launchpad-Bugs-Fixed: 1988548
Changes:
 zlib (1:1.2.11.dfsg-2ubuntu9.2) jammy-security; urgency=medium
 .
   * SECURITY UPDATE: heap-based buffer over-read (LP: #1988548)
     - debian/patches/CVE-2022-37434-1.patch: in inflate.c, add an extra
       condition to check if state->head->extra_max is greater than len
       before copying, and move the len assignment to be placed before the
       check.
     - debian/patches/CVE-2022-37434-2.patch: in the previous patch, in
       inflate.c, the place of the len assignment was causing issues so it
       was moved to be placed within the check.
     - CVE-2022-37434
Checksums-Sha1:
 cd8f57efff5d2e3da8306897b078c77f677d396c 101066 zlib1g-dbgsym_1.2.11.dfsg-2ubuntu9.2_armhf.ddeb
 958f08971f40a1d02ea9fd2f1d0f4d6582890799 156976 zlib1g-dev_1.2.11.dfsg-2ubuntu9.2_armhf.deb
 a0e1e71657e95b5b4c6580ddede9c80f4e74707e 51668 zlib1g_1.2.11.dfsg-2ubuntu9.2_armhf.deb
 48ec955925d968cc38aa9345e63aad46d552988a 6095 zlib_1.2.11.dfsg-2ubuntu9.2_armhf.buildinfo
Checksums-Sha256:
 1a3e4dd44bfa21817bf4624ad00b5a964930e3c80ff2d02c9a8513e31ec61dfb 101066 zlib1g-dbgsym_1.2.11.dfsg-2ubuntu9.2_armhf.ddeb
 bc59340eec91aa3da6829c14c60f5415db8b79bc4154e4d3f2255cdee0e4c78a 156976 zlib1g-dev_1.2.11.dfsg-2ubuntu9.2_armhf.deb
 f7aa75bc695ee90ae9ba5cc37ed454236c33965af2f67157beec7f9b9063cc39 51668 zlib1g_1.2.11.dfsg-2ubuntu9.2_armhf.deb
 5dc8b5f0b35c57ea174e45f3afc1343026b7dcd777e80aa2f3179b456ae15ff3 6095 zlib_1.2.11.dfsg-2ubuntu9.2_armhf.buildinfo
Files:
 9dcfc49d62e31755c8c501427a01732c 101066 debug optional zlib1g-dbgsym_1.2.11.dfsg-2ubuntu9.2_armhf.ddeb
 53575305755911b34149c7c6cefab11f 156976 libdevel optional zlib1g-dev_1.2.11.dfsg-2ubuntu9.2_armhf.deb
 f692e5835220b04f79e16c4e94e87319 51668 libs required zlib1g_1.2.11.dfsg-2ubuntu9.2_armhf.deb
 ccbc38e04a581e9007c9174bbdcaecb8 6095 libs optional zlib_1.2.11.dfsg-2ubuntu9.2_armhf.buildinfo
Original-Maintainer: Mark Brown <broonie@debian.org>