Format: 1.8 Date: Fri, 12 Apr 2024 15:52:21 +0300 Source: klibc Binary: klibc-utils libklibc libklibc-dev Built-For-Profiles: noudeb Architecture: riscv64 Version: 2.0.13-1ubuntu0.1 Distribution: mantic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Ian Constantin Description: klibc-utils - small utilities built with klibc for early boot libklibc - minimal libc subset for use with initramfs libklibc-dev - kernel headers used during the build of klibc Changes: klibc (2.0.13-1ubuntu0.1) mantic-security; urgency=medium . * SECURITY UPDATE: improper pointer arithmetic - debian/patches/CVE-2016-9840.patch: remove offset pointer optimization in usr/klibc/zlib/inftrees.c. - CVE-2016-9840 * SECURITY UPDATE: improper pointer arithmetic - debian/patches/CVE-2016-9841.patch: remove offset pointer optimization in usr/klibc/zlib/inffast.c. - CVE-2016-9841 * SECURITY UPDATE: memory corruption during compression - debian/patches/CVE-2018-25032.patch: addresses a bug that can crash deflate on rare inputs when using Z_FIXED. - CVE-2018-25032 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2022-37434-1.patch: adds an extra condition to check if state->head->extra_max is greater than len before copying, and moves the len assignment to be placed before the check in usr/klibc/zlib/inflate.c. - debian/patches/CVE-2022-37434-2.patch: in the previous patch, the placement of the len assignment was causing issues so it was moved within the conditional check. - CVE-2022-37434 Checksums-Sha1: 55a0e0e807d36a54661406c966b15a6f011e8fc7 424696 klibc-utils-dbgsym_2.0.13-1ubuntu0.1_riscv64.ddeb 8e1e7b6d0846571b32fc3368b35b81bf5b2be301 115476 klibc-utils_2.0.13-1ubuntu0.1_riscv64.deb 168ef64bb0f3bc465fbae1ec8fa161fd48040149 6457 klibc_2.0.13-1ubuntu0.1_riscv64.buildinfo 352c6bbb2ff0085abf2ed0c301c1fcbb7dd47a75 128130 libklibc-dbgsym_2.0.13-1ubuntu0.1_riscv64.ddeb 2e33cc81a8645357c4974c73beb066e818acaa1b 332504 libklibc-dev_2.0.13-1ubuntu0.1_riscv64.deb 20a0a903d064aecfe55e6b04b29248728b5d619c 54486 libklibc_2.0.13-1ubuntu0.1_riscv64.deb Checksums-Sha256: 12f2b3398c1fcce46887dfe7a79f3b20b190bce7a5cdff8797f68828c86b961c 424696 klibc-utils-dbgsym_2.0.13-1ubuntu0.1_riscv64.ddeb e19d2f90fdd968fa13e3d1adb10a3304513ee887c4e5b1ef5bd1b26cabad7b30 115476 klibc-utils_2.0.13-1ubuntu0.1_riscv64.deb 94a43273d90888924c9f2a4c8332770a2b2b7047122ce1178b87b4bb6f7322f2 6457 klibc_2.0.13-1ubuntu0.1_riscv64.buildinfo 9e70c3308ff5875ccba45f749844957604eb5a117d620b937f138ef483cacbe6 128130 libklibc-dbgsym_2.0.13-1ubuntu0.1_riscv64.ddeb 81a2381d914e71707c4a612b0921292adca975a38ea4dd4aa0b0b58c1254ac44 332504 libklibc-dev_2.0.13-1ubuntu0.1_riscv64.deb b0900e00367f11e3f1607737699d5aec7d6454c74b8fec020e3bc5e4951199e7 54486 libklibc_2.0.13-1ubuntu0.1_riscv64.deb Files: 34a5c59f5f0db0363bbe0ab4d88385cc 424696 debug optional klibc-utils-dbgsym_2.0.13-1ubuntu0.1_riscv64.ddeb c25ffef41f975566c9d66e73058a5e4c 115476 libs optional klibc-utils_2.0.13-1ubuntu0.1_riscv64.deb d8a7c6c2afd2da9be5a042d8df2b64a6 6457 libs optional klibc_2.0.13-1ubuntu0.1_riscv64.buildinfo df87d0158e806262240cd628b4af2343 128130 debug optional libklibc-dbgsym_2.0.13-1ubuntu0.1_riscv64.ddeb a38ea790deb18149d5921c8d0170351f 332504 libdevel optional libklibc-dev_2.0.13-1ubuntu0.1_riscv64.deb 5adf7a75e2185c7a69e8b9c049a78e44 54486 libs optional libklibc_2.0.13-1ubuntu0.1_riscv64.deb Original-Maintainer: Debian Kernel Team