Format: 1.8 Date: Mon, 07 Dec 2020 13:45:23 +0100 Source: apt Binary: apt libapt-pkg5.0 libapt-inst2.0 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: i386 Version: 1.4.11 Distribution: stretch Urgency: high Maintainer: APT Development Team Changed-By: Julian Andres Klode Description: apt - commandline package manager apt-doc - documentation for APT apt-transport-https - https download transport for APT apt-utils - package management related utility programs libapt-inst2.0 - deb package format runtime library libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - documentation for APT development libapt-pkg5.0 - package management runtime library Changes: apt (1.4.11) stretch-security; urgency=high . * SECURITY UPDATE: Integer overflow in parsing (LP: #1899193) - apt-pkg/contrib/arfile.cc: add extra checks. - apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB - apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB - test/*: add tests. - CVE-2020-27350 * Additional hardening: - apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB + * Fix autopkgtest regression in 1.8.2.1 security update Checksums-Sha1: 83003b2baf4ff9ccd837909ce4b63333bb24dee4 4312758 apt-dbgsym_1.4.11_i386.deb 89b4d314528a1d370b6ac64d773de60d8cbe72f6 281534 apt-transport-https-dbgsym_1.4.11_i386.deb 9fac0a05a131da05e8dfdf487246d4db67c32a3d 174802 apt-transport-https_1.4.11_i386.deb 334508b23958a85d733a81ca1a395afc4fd1fd57 1239958 apt-utils-dbgsym_1.4.11_i386.deb 57a7e6d93920636ff838cf41686c3ce54d790cee 421734 apt-utils_1.4.11_i386.deb c7ccdf46a7e2ccb9fb38baee7c056423d6727d6f 9504 apt_1.4.11_i386.buildinfo bac509645ea37c68af82385003f0f213482165f9 1264634 apt_1.4.11_i386.deb 13470d9fe0b18a7c33276fccdd5b4afaf88a8ef7 214748 libapt-inst2.0-dbgsym_1.4.11_i386.deb 439e4f112b3c3e1bf13f26bb1627cbf03b09ac63 193708 libapt-inst2.0_1.4.11_i386.deb 44849f0a98ec86a1407e5886ec54ea19b73d2010 235542 libapt-pkg-dev_1.4.11_i386.deb d88b91d711bdc8d6bcd5dbe57c7e6360a2af793c 5832700 libapt-pkg5.0-dbgsym_1.4.11_i386.deb 5d18d4e4fc0393723751709c47cbeb7f8cfa1990 989312 libapt-pkg5.0_1.4.11_i386.deb Checksums-Sha256: bfe44d655fd5b09bc2ef851852518ae756270171e4dcbc6945627cdcc7214968 4312758 apt-dbgsym_1.4.11_i386.deb 054920b8b78495e42306f0b0902b2073400dcd0d45257f339a97afe152bf7932 281534 apt-transport-https-dbgsym_1.4.11_i386.deb b13efddffb1c9c7555071b26eebc8b28c830d260ee650079e67f6a8fa867570c 174802 apt-transport-https_1.4.11_i386.deb 4fc762323ecdef26a2be56c7c6585f8b801c269b131bda69fee418b6f2b873be 1239958 apt-utils-dbgsym_1.4.11_i386.deb 03cb211a28da708d357a6b8d6eefb7e4dea8c7e58063b0f729a794500451660e 421734 apt-utils_1.4.11_i386.deb 208b22c8e74af3b53b5e3f3a903c05af0096c25728346a129d6f6f270a6d5d91 9504 apt_1.4.11_i386.buildinfo bc0d5fcecde6dd3c35e2da6f1bcfa7cdc9b32dde7421e69a92d10c0263b13166 1264634 apt_1.4.11_i386.deb 3d3157b03746ab946aecd809009e41da6ebfae5bca3660117d59079886d215ed 214748 libapt-inst2.0-dbgsym_1.4.11_i386.deb 379451701e29d83e9ecf7f9402188e72e162241e38e9f3c8820dcd54b5752ec7 193708 libapt-inst2.0_1.4.11_i386.deb fc1302955702464eb9f4466fba706d166868ae34eeef46757fd848119e13b6a3 235542 libapt-pkg-dev_1.4.11_i386.deb 130b7bcd134730623e095388907827928046df20735e1e06c219b61196966610 5832700 libapt-pkg5.0-dbgsym_1.4.11_i386.deb 17dac5124ce1cf1b22590c697e5e4f0a528c9d9b945a08b1be6297765d6b67e5 989312 libapt-pkg5.0_1.4.11_i386.deb Files: 56c923ac75761fc8f17a200803b2d0ad 4312758 debug extra apt-dbgsym_1.4.11_i386.deb e6494a892b9e6f60432bab4f0d054e57 281534 debug extra apt-transport-https-dbgsym_1.4.11_i386.deb 551324a2856768d06357e2155bf52421 174802 admin optional apt-transport-https_1.4.11_i386.deb 0a318e7d05b7d228e09097d42be3d435 1239958 debug extra apt-utils-dbgsym_1.4.11_i386.deb ea92a006db6f9f993dee3374f97638b7 421734 admin important apt-utils_1.4.11_i386.deb 4e3a6829b023d129b784cf6f2f5f7e9b 9504 admin important apt_1.4.11_i386.buildinfo 57319a2634805ddc761c2f5bf891053d 1264634 admin important apt_1.4.11_i386.deb 237826e583f247b6d9192d7199545ef3 214748 debug extra libapt-inst2.0-dbgsym_1.4.11_i386.deb 73f048d498a8b6c701c9df4c552eb59b 193708 libs important libapt-inst2.0_1.4.11_i386.deb 75a9edf79252fe324838c3df92953bf9 235542 libdevel optional libapt-pkg-dev_1.4.11_i386.deb a36df519e6f6140767327286e4da00cc 5832700 debug extra libapt-pkg5.0-dbgsym_1.4.11_i386.deb cc531596ac8e8ce43e3a79a6452c7ccc 989312 libs important libapt-pkg5.0_1.4.11_i386.deb