Format: 1.8 Date: Tue, 16 Aug 2022 19:08:38 -0300 Source: zlib Binary: zlib1g zlib1g-dev zlib1g-dbg zlib1g-udeb lib64z1 lib64z1-dev lib32z1 lib32z1-dev libn32z1 libn32z1-dev libx32z1 libx32z1-dev Architecture: i386 Version: 1:1.2.11.dfsg-0ubuntu2.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Rodrigo Figueiredo Zaiden Description: lib32z1 - compression library - 32 bit runtime lib32z1-dev - compression library - 32 bit development lib64z1 - compression library - 64 bit runtime lib64z1-dev - compression library - 64 bit development libn32z1 - compression library - n32 runtime libn32z1-dev - compression library - n32 development libx32z1 - compression library - x32 runtime libx32z1-dev - compression library - x32 development zlib1g - compression library - runtime zlib1g-dbg - compression library - development zlib1g-dev - compression library - development zlib1g-udeb - compression library - runtime for Debian installer (udeb) Changes: zlib (1:1.2.11.dfsg-0ubuntu2.2) bionic-security; urgency=medium . * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2022-37434-1.patch: in inflate.c, add an extra condition to check if state->head->extra_max is greater than len before copying, and move the len assignment to be placed before the check. - debian/patches/CVE-2022-37434-2.patch: in the previous patch, in inflate.c, the place of the len assignment was causing issues so it was moved to be placed within the check. - CVE-2022-37434 Checksums-Sha1: d86909309bb505313e41fea9ebdf7902174390cb 58084 lib64z1-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb c7c163ff9a5fc79beed13f5e0c5a6882c700e573 56800 lib64z1_1.2.11.dfsg-0ubuntu2.2_i386.deb 27cf25e18dba968d1a1386d39e57dd5e9588d095 57508 libx32z1-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb 82a3905cd66d521895474e5b0c2a59149f8589b1 56464 libx32z1_1.2.11.dfsg-0ubuntu2.2_i386.deb 62c586aef9abd2318f9a0ae7c1df26c8108e7e0f 257916 zlib1g-dbg_1.2.11.dfsg-0ubuntu2.2_i386.deb 6aaabf1a6c3cddefddba0d317ecafd760b28540e 178136 zlib1g-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb d98337eac89b0c91e30aaa672a1f2801df475d9e 55144 zlib1g-udeb_1.2.11.dfsg-0ubuntu2.2_i386.udeb 720495f53f257335b6db63aedfd2d58601f5837a 58640 zlib1g_1.2.11.dfsg-0ubuntu2.2_i386.deb c232fa8686925985ed0e4680029c8f460da41327 8347 zlib_1.2.11.dfsg-0ubuntu2.2_i386.buildinfo Checksums-Sha256: 5ae2d12208fd7fa4885e9bec3077dbcf00189cc77a9e2403ebe00c37985a8798 58084 lib64z1-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb 064be9ef212d89d141e7e23ea1be38d527807cb59a8440112845174f4abbcdff 56800 lib64z1_1.2.11.dfsg-0ubuntu2.2_i386.deb 5d27151b1681dc67785318749fe5b80d45fe72accc9386eae905d7d3e5fc0db2 57508 libx32z1-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb 76ac61178f6e0cf681185874b08b57b4832b0fa501be372bab074316d5b823e1 56464 libx32z1_1.2.11.dfsg-0ubuntu2.2_i386.deb 188bf882d54f12d29d9efcabdab9b4720ee63866cb36d7f13c9c163f37f89bfc 257916 zlib1g-dbg_1.2.11.dfsg-0ubuntu2.2_i386.deb 19b642068d492fc19b8ba9dd22d07975c792a525727677fb7aed3c0b78748156 178136 zlib1g-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb 5ce4b9eeada3ebb85c902d780c60c0284a2b5388c3ccb145cfa30354ccd0cf6a 55144 zlib1g-udeb_1.2.11.dfsg-0ubuntu2.2_i386.udeb edf75114ea67e7632efe579707cfb1042376754d32e216bda489a3057fee22fe 58640 zlib1g_1.2.11.dfsg-0ubuntu2.2_i386.deb 78e00eff33136bd60222f3971e51cae4c5a22f292513afbe87735119a65dd6f4 8347 zlib_1.2.11.dfsg-0ubuntu2.2_i386.buildinfo Files: aea66fb46a6894d2970086d25a79c514 58084 libdevel optional lib64z1-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb f7529bdba985bea5f2a567572eef4604 56800 libs optional lib64z1_1.2.11.dfsg-0ubuntu2.2_i386.deb 0b9130b2e2c444efa551be7c25a6aade 57508 libdevel optional libx32z1-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb e4f771f5d2658391a93cd1e9a0f5dddd 56464 libs optional libx32z1_1.2.11.dfsg-0ubuntu2.2_i386.deb 62631794fa8c8545c5baf7941953e911 257916 debug extra zlib1g-dbg_1.2.11.dfsg-0ubuntu2.2_i386.deb 657849accab98256eb84354d5bf88d3d 178136 libdevel optional zlib1g-dev_1.2.11.dfsg-0ubuntu2.2_i386.deb 1b0040f8d47c16b86567c8f51a45eb6f 55144 debian-installer optional zlib1g-udeb_1.2.11.dfsg-0ubuntu2.2_i386.udeb b7ab040c6e2d10541ebf42ba7825b6b8 58640 libs required zlib1g_1.2.11.dfsg-0ubuntu2.2_i386.deb 36dc48da27e0711c9256c22bda7899dc 8347 libs optional zlib_1.2.11.dfsg-0ubuntu2.2_i386.buildinfo Original-Maintainer: Mark Brown Package-Type: udeb