Format: 1.8
Date: Mon, 07 Dec 2020 12:08:43 +0100
Source: apt
Binary: apt apt-utils libapt-pkg-dev libapt-pkg6.0
Architecture: riscv64 riscv64_translations
Version: 2.0.2ubuntu0.2
Distribution: focal
Urgency: high
Maintainer: Launchpad Build Daemon <buildd@riscv64-qemu-lcy01-061.buildd>
Changed-By: Julian Andres Klode <juliank@ubuntu.com>
Description:
 apt        - commandline package manager
 apt-utils  - package management related utility programs
 libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst
 libapt-pkg6.0 - package management runtime library
Launchpad-Bugs-Fixed: 1899193
Changes:
 apt (2.0.2ubuntu0.2) focal-security; urgency=high
 .
   * SECURITY UPDATE: Integer overflow in parsing (LP: #1899193)
     - apt-pkg/contrib/arfile.cc: add extra checks.
     - apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB
     - apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB
     - test/*: add tests.
     - CVE-2020-27350
   * Additional hardening:
     - apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB
   * .gitlab-ci.yml: Test on focal, not unstable
Checksums-Sha1:
 9d462a8f8dd3af709b7f865bf57ca105d47ca3a2 4214912 apt-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 a58c1f431f75ee93fb7cbd7e507a14a138a4e39b 1244468 apt-utils-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 46c375c0608470b60acdbb262106dde5d221afd4 208284 apt-utils_2.0.2ubuntu0.2_riscv64.deb
 a4908a22aa9e17cb18fdd36b0705cfed22b3a19e 9711 apt_2.0.2ubuntu0.2_riscv64.buildinfo
 14106a24134c1070f7ad189a21f256138516599f 1231756 apt_2.0.2ubuntu0.2_riscv64.deb
 cfc3a6e5c6320ff2865e328b596c4e4209c86010 6325528 apt_2.0.2ubuntu0.2_riscv64_translations.tar.gz
 54a984af7b983f246b641a6b1b9b8378d4337c31 97892 libapt-pkg-dev_2.0.2ubuntu0.2_riscv64.deb
 1d87b026a90c5613a759583c54f35a7ed7650bcc 6524600 libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 28a81c7a0c2ea4432544089f1dd099fd8c34be5e 795852 libapt-pkg6.0_2.0.2ubuntu0.2_riscv64.deb
Checksums-Sha256:
 f2915c3580f747c5a08e53679b15919fc4e99362c490d6f46d0737289c5aa596 4214912 apt-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 1ab58c4b3ec5931f14eb568fd5a83316b27b5f2165fd33aa6ec639d728f52cef 1244468 apt-utils-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 6601850caa296b652480cd067cf07c263a7bc533519c22db9ed85101d53b5090 208284 apt-utils_2.0.2ubuntu0.2_riscv64.deb
 7b0c1b80ab81c5e70eb16db87e04243725eb89cbd92fc1bd3849815f2532408f 9711 apt_2.0.2ubuntu0.2_riscv64.buildinfo
 934f407cb610bb7c8dac6bb9d1351a776a4682aa9d3ddf08520cfe0b07387146 1231756 apt_2.0.2ubuntu0.2_riscv64.deb
 f84e053e4cba3c05f42ebf1e56ed4966f1aed14a6820f60579665af7f37b815b 6325528 apt_2.0.2ubuntu0.2_riscv64_translations.tar.gz
 bd3e12fa05f5df2f68c450bee9d99d31cdc3e86956207c91aac3fbb95e60d681 97892 libapt-pkg-dev_2.0.2ubuntu0.2_riscv64.deb
 a6977f7e35e1860e06028d470a0db742606332400747e885563c5d78ae93934a 6524600 libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 694d872d1c38aa9ed33cd45889f228258b5d833bb05f10f26ba02f05f2e04e96 795852 libapt-pkg6.0_2.0.2ubuntu0.2_riscv64.deb
Files:
 1cab6d3c9a6d27cd3dbbd989ed20b085 4214912 debug optional apt-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 6a1121b17e6dd54c9b3f20a319716616 1244468 debug optional apt-utils-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 06aec3b7434f4c309289faaf3579fb3b 208284 admin important apt-utils_2.0.2ubuntu0.2_riscv64.deb
 05507ae853601a33c6d0c615427b73c1 9711 admin important apt_2.0.2ubuntu0.2_riscv64.buildinfo
 52c4fad16f6e9e878dc1f780958cdaf9 1231756 admin important apt_2.0.2ubuntu0.2_riscv64.deb
 931293f8d56db0eb527ec96205422d7a 6325528 raw-translations - apt_2.0.2ubuntu0.2_riscv64_translations.tar.gz
 0a416851f225587f5e05441dc2c42d36 97892 libdevel optional libapt-pkg-dev_2.0.2ubuntu0.2_riscv64.deb
 ff9ba305dc4dd3e5931523f62ace2856 6524600 debug optional libapt-pkg6.0-dbgsym_2.0.2ubuntu0.2_riscv64.ddeb
 a49e5c02e49b2c8a34a40c9909982d5f 795852 libs optional libapt-pkg6.0_2.0.2ubuntu0.2_riscv64.deb
Original-Maintainer: APT Development Team <deity@lists.debian.org>