Format: 1.8 Date: Tue, 16 Aug 2022 19:08:38 -0300 Source: zlib Binary: zlib1g zlib1g-dev zlib1g-dbg zlib1g-udeb lib64z1 lib64z1-dev lib32z1 lib32z1-dev libn32z1 libn32z1-dev libx32z1 libx32z1-dev Architecture: ppc64el Version: 1:1.2.11.dfsg-0ubuntu2.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Rodrigo Figueiredo Zaiden Description: lib32z1 - compression library - 32 bit runtime lib32z1-dev - compression library - 32 bit development lib64z1 - compression library - 64 bit runtime lib64z1-dev - compression library - 64 bit development libn32z1 - compression library - n32 runtime libn32z1-dev - compression library - n32 development libx32z1 - compression library - x32 runtime libx32z1-dev - compression library - x32 development zlib1g - compression library - runtime zlib1g-dbg - compression library - development zlib1g-dev - compression library - development zlib1g-udeb - compression library - runtime for Debian installer (udeb) Changes: zlib (1:1.2.11.dfsg-0ubuntu2.2) bionic-security; urgency=medium . * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2022-37434-1.patch: in inflate.c, add an extra condition to check if state->head->extra_max is greater than len before copying, and move the len assignment to be placed before the check. - debian/patches/CVE-2022-37434-2.patch: in the previous patch, in inflate.c, the place of the len assignment was causing issues so it was moved to be placed within the check. - CVE-2022-37434 Checksums-Sha1: 6fdb98a3bcd5e6c77a914c78e44e46a1b74f52f4 100324 zlib1g-dbg_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb f623c5c173f14c27cb02fbb77d0c9cf7bbc72d24 177916 zlib1g-dev_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb f84b0284e82f3fdb21d23fc47e89baee86b93841 55660 zlib1g-udeb_1.2.11.dfsg-0ubuntu2.2_ppc64el.udeb 580e26f17ee7fb9655b1a69ebbc5731609b0bf2a 59140 zlib1g_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb 8f771f0b0ff4e7449d4b31fb2ba6b0cea5611bb2 6145 zlib_1.2.11.dfsg-0ubuntu2.2_ppc64el.buildinfo Checksums-Sha256: 5b1c9d97dedc59a5026927b1d10292c99563f9e8c4f0569ba3d1c2b3aa260408 100324 zlib1g-dbg_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb 29734d4a7162b5fc49f02194ccf7866345690f63bc38afb039f2242f586c0e1c 177916 zlib1g-dev_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb a90f6489a68b63f49382247e81edc230860af5420d80585e8a33b9faa065222d 55660 zlib1g-udeb_1.2.11.dfsg-0ubuntu2.2_ppc64el.udeb 3e4c22a79704859f2da8d3ef5cf14c428cbaf0fc54d660425820e0bcfb0dfe8a 59140 zlib1g_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb add9946ee80b0d01572c0ce1fbd56c006845504a5900cb2215c7ad1599db5b1d 6145 zlib_1.2.11.dfsg-0ubuntu2.2_ppc64el.buildinfo Files: 01316bccdb52cadaf2d1a2a22b0c9069 100324 debug extra zlib1g-dbg_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb 6b58fdac76d4e05f26738cfe37d98891 177916 libdevel optional zlib1g-dev_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb 802d4cfa31a574eef606c91458298036 55660 debian-installer optional zlib1g-udeb_1.2.11.dfsg-0ubuntu2.2_ppc64el.udeb c2cd3f473343109886b582c57af5fa69 59140 libs required zlib1g_1.2.11.dfsg-0ubuntu2.2_ppc64el.deb f71efbde91aa26a31f9be049ca245fdd 6145 libs optional zlib_1.2.11.dfsg-0ubuntu2.2_ppc64el.buildinfo Original-Maintainer: Mark Brown Package-Type: udeb