Format: 1.8
Date: Thu, 08 Jun 2023 10:01:09 +0530
Source: netatalk
Binary: netatalk
Built-For-Profiles: noudeb
Architecture: riscv64
Version: 3.1.12~ds-9ubuntu0.22.04.1
Distribution: jammy
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@riscv64-qemu-lgw01-019.buildd>
Changed-By: Nishit Majithia <nishit.majithia@canonical.com>
Description:
 netatalk   - Apple Filing Protocol service
Changes:
 netatalk (3.1.12~ds-9ubuntu0.22.04.1) jammy-security; urgency=medium
 .
   * SECURITY UPDATE: RCE vulnerability
     - debian/patches/CVE-2021-31439.patch: libatalk: apply limit checking
       to DSI write offset
     - CVE-2021-31439
   * SECURITY UPDATE: RCE with root privileges
     - debian/patches/CVE-2022-0194_23122_23123_23124_*.patch: add defines
       for icon lengths, harden ad_entry(), add handling for cases where
       ad_entry() returns NULL, protect against removing AFP metadata xattr,
       avoid setting adouble entries on symlinks
     - debian/patches/CVE-2022-23121-*.patch: apply hardening to
       parse_entries()
     - debian/patches/CVE-2022-23125.patch: harden copyapplfile()
     - debian/patches/CVE-2022-43634.patch: fix dsi_writeinit() function
     - CVE-2022-0194
     - CVE-2022-23121
     - CVE-2022-23122
     - CVE-2022-23123
     - CVE-2022-23124
     - CVE-2022-23125
     - CVE-2022-43634
   * SECURITY UPDATE: heap-based buffer overflow
     - debian/patches/CVE-2022-45188.patch: fixes the heap-based buffer
       overflow in afp_getappl()
     - CVE-2022-45188
Checksums-Sha1:
 80a210d63e5373ca8a61deb4687e330799c89950 1146906 netatalk-dbgsym_3.1.12~ds-9ubuntu0.22.04.1_riscv64.ddeb
 654018958c7d5cb1b5a5153caa3adb80e36cf682 11422 netatalk_3.1.12~ds-9ubuntu0.22.04.1_riscv64.buildinfo
 c410cac1bf994877551172700439a5a8bb2d6621 679794 netatalk_3.1.12~ds-9ubuntu0.22.04.1_riscv64.deb
Checksums-Sha256:
 6e98ec4854dc73e77f47c4fb0f702f7d04d8a6b52b380811109df33f292f330a 1146906 netatalk-dbgsym_3.1.12~ds-9ubuntu0.22.04.1_riscv64.ddeb
 55a95c62a5ee24047e4d98afb76e6cd8dd4e19bc396873d32047a92aa8533480 11422 netatalk_3.1.12~ds-9ubuntu0.22.04.1_riscv64.buildinfo
 27f1845a8ea278f95de22e5ee78a33394d28ff43e7c08618bc28934879acba09 679794 netatalk_3.1.12~ds-9ubuntu0.22.04.1_riscv64.deb
Files:
 8c18305e5f3aaca01c62f3d18c375bb8 1146906 debug optional netatalk-dbgsym_3.1.12~ds-9ubuntu0.22.04.1_riscv64.ddeb
 3754642632eb84039bce0d7957fe9a82 11422 net optional netatalk_3.1.12~ds-9ubuntu0.22.04.1_riscv64.buildinfo
 a105d5f0fdc93cc9ba8e89e971a0c52a 679794 net optional netatalk_3.1.12~ds-9ubuntu0.22.04.1_riscv64.deb
Original-Maintainer: Debian Netatalk team <pkg-netatalk-devel@lists.alioth.debian.org>