-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 18 Oct 2024 01:45:17 +0900
Source: 7zip
Binary: 7zip 7zip-dbgsym
Architecture: mips64el
Version: 22.01+dfsg-8+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: YOKOTA Hiroshi <yokota.hgml@gmail.com>
Description:
 7zip       - 7-Zip file archiver with a high compression ratio
Changes:
 7zip (22.01+dfsg-8+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-52168 (buffer overflow) and CVE-2023-52169 (buffer over-read)
 .
     * CVE-2023-52168: heap-based buffer overflow
         NTFS handler allows an attacker to overwrite two bytes at multiple
         offsets beyond the allocated buffer size.
     * CVE-2023-52169: out-of-bounds read
         NTFS handler allows an attacker to read beyond the intended buffer.
         The bytes read beyond the intended buffer are presented as a part of
         a filename listed in the file system image. This has security relevance
         in some known web-service use cases where untrusted users can upload
         files and have them extracted by a server-side 7-Zip process.
 .
     Detailed report about these issues are available at:
     https://dfir.ru/2024/06/19/vulnerabilities-in-7-zip-and-ntfs3/
Checksums-Sha1:
 4c6c1044bc7bb3be427d95f60b7d0ba42950fc73 6802576 7zip-dbgsym_22.01+dfsg-8+deb12u1_mips64el.deb
 289dcb36532f23f5190f18e021504abcdb245c6d 5934 7zip_22.01+dfsg-8+deb12u1_mips64el-buildd.buildinfo
 86a8053d9fada941c6933bf0bf5aa97f947d7fb5 944844 7zip_22.01+dfsg-8+deb12u1_mips64el.deb
Checksums-Sha256:
 f54fbe20342fa0efcd011bf8f1a7e9b86bcd5cca8304d7f60dc3eca1487dca8f 6802576 7zip-dbgsym_22.01+dfsg-8+deb12u1_mips64el.deb
 6415823ea49da68d1e9e2947eb1272ee0a88e381bd43e084771f0a81554c8dc6 5934 7zip_22.01+dfsg-8+deb12u1_mips64el-buildd.buildinfo
 0d5f2688d7f51da899fdd4dc789fa75f7d08884d39ee6f1fe02461a12d08c8f4 944844 7zip_22.01+dfsg-8+deb12u1_mips64el.deb
Files:
 3d6ca711f2a7815181e44b0c88435bdf 6802576 debug optional 7zip-dbgsym_22.01+dfsg-8+deb12u1_mips64el.deb
 3706e12c23af4e90069554f04926e62e 5934 utils optional 7zip_22.01+dfsg-8+deb12u1_mips64el-buildd.buildinfo
 b666381329dc5ccdb4f45e8fe7e6632c 944844 utils optional 7zip_22.01+dfsg-8+deb12u1_mips64el.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEERbXMbY9VMQqnSaVEV4aVsMglzVcFAmcTwsQACgkQV4aVsMgl
zVeqyxAAitmWaqkJ/Jq3Gjnk30NiZheiBJOnohefOIPCvUKsgJ3TYH6ZFYIqXeiI
wtwl4DMWF4yWUkRU2WzyGJzoZbY7db4bkq7L7EZpFuiJ6kpQ82A2N4I/9KzAIxUP
XYP1YKZje8HQVWDcWEROv2kZUX4CHLDW7xJKVNC8qZajwRm/xBJrLsB7lbcxrAGt
3N7zthxXuEvbJ0bneYkNcPpmJNXGt8rLwNIpc8cMq9pHe5ENjYhBh4ODeqv6Gbid
ZYKm85OEuWfcWClsIQx0VBWi9pZddtFXzp969/1bg0Vz30fl6E61X/IaO/yg57Uk
nmCQO5ecFK58nb2FkHTcV8i/gvmpzDvMXEdl6it9b2Rh0srZU1XNuEsNM3+CQ6zE
/gf3c4e1oS2UwqFFFhep/2P77EhwEMD9iV1LHHGtA1wxGZS5LbFSVf29tmZOwj/O
sj29zd/SlyLC2oUJSERLvJzx6G2im6VAofwPge/fMNUlsYMfI17VGJcSxmMsixud
YBGKqhdNfj/kPwjl/9jzZ1zqxZQEsmjPS5Z2sMbfxALvMjjGSz+cNLYKZCIO2JHo
bjNY1w7HrVorGtJM+SYYZjOJfFG/pyxN7N0yvVhYn+Z7yk6PB6F6UMWDYhDk1oSH
UHd42NzCtLtNmC5I9GP3Cs7PcsjoPo371UnG99rj6GGiDYrMT9A=
=ZS4L
-----END PGP SIGNATURE-----