Format: 1.8 Date: Mon, 07 Dec 2020 13:45:23 +0100 Source: apt Binary: apt libapt-pkg5.0 libapt-inst2.0 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: all Version: 1.4.11 Distribution: stretch Urgency: high Maintainer: APT Development Team Changed-By: Julian Andres Klode Description: apt - commandline package manager apt-doc - documentation for APT apt-transport-https - https download transport for APT apt-utils - package management related utility programs libapt-inst2.0 - deb package format runtime library libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - documentation for APT development libapt-pkg5.0 - package management runtime library Changes: apt (1.4.11) stretch-security; urgency=high . * SECURITY UPDATE: Integer overflow in parsing (LP: #1899193) - apt-pkg/contrib/arfile.cc: add extra checks. - apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB - apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB - test/*: add tests. - CVE-2020-27350 * Additional hardening: - apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB + * Fix autopkgtest regression in 1.8.2.1 security update Checksums-Sha1: c202cbfa78535493af117604747d74c03d8b3dc6 365450 apt-doc_1.4.11_all.deb d5c082528f5bee3e83b5a226f483180dd98f2f83 8850 apt_1.4.11_all.buildinfo f146b44010e8cfe7efd52405affe4cf853f1df63 1004794 libapt-pkg-doc_1.4.11_all.deb Checksums-Sha256: 7eeac000f7fce6b5128364bc05f70823a33e300e2cc3f1ebc1a6393364feffda 365450 apt-doc_1.4.11_all.deb 6507156e0112004a7501807698c8a6f4e97881f66eb4f3ba73f7832f96b32d75 8850 apt_1.4.11_all.buildinfo 62b11452f7127ef3ff353434557cce0619b5454a2c7d1f3ca53d1e6432ce45c8 1004794 libapt-pkg-doc_1.4.11_all.deb Files: e6d7357974d0b17c03a5cb7cf98f2ca2 365450 doc optional apt-doc_1.4.11_all.deb 131239b99d6fa2fd24d142490e347ef0 8850 admin important apt_1.4.11_all.buildinfo 9abc4c8fc5e8d84582792262ce837e5f 1004794 doc optional libapt-pkg-doc_1.4.11_all.deb