changes_fields:
Architecture: amd64
Binary: apt libapt-pkg5.0 libapt-inst2.0 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils
apt-transport-https
Changed-By: Julian Andres Klode <jak@debian.org>
Changes: |2-
apt (1.4.11) stretch-security; urgency=high
.
* SECURITY UPDATE: Integer overflow in parsing (LP: #1899193)
- apt-pkg/contrib/arfile.cc: add extra checks.
- apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB
- apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB
- test/*: add tests.
- CVE-2020-27350
* Additional hardening:
- apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB
+ * Fix autopkgtest regression in 1.8.2.1 security update
Checksums-Sha1:
- name: apt-dbgsym_1.4.11_amd64.deb
sha1: 6f4abfa9bf0a9651a982b1484a0a5484b8b3e2a5
size: '4452082'
- name: apt-transport-https-dbgsym_1.4.11_amd64.deb
sha1: 0a5fcc6455b95656c215a74540f185093d75166e
size: '292530'
- name: apt-transport-https_1.4.11_amd64.deb
sha1: 9667a7af9842ca2563ec38285a987f69d98a0f31
size: '171084'
- name: apt-utils-dbgsym_1.4.11_amd64.deb
sha1: e96953a51bf2f3abc8f9edc45288dc1f37cda59c
size: '1289242'
- name: apt-utils_1.4.11_amd64.deb
sha1: 9062cf152b2f234e639c0bef5c6fd68924c33b6e
size: '410346'
- name: apt_1.4.11_amd64.buildinfo
sha1: 0d4f75708d152a4354a1834c0d60de72f6939da4
size: '9601'
- name: apt_1.4.11_amd64.deb
sha1: 3627dcc2a98375e6bad9994d8939b57af1ee914f
size: '1231926'
- name: libapt-inst2.0-dbgsym_1.4.11_amd64.deb
sha1: 6d387910225bea84ab1aecba61ca600b6a977751
size: '221828'
- name: libapt-inst2.0_1.4.11_amd64.deb
sha1: 19137eaf8abeb87b418b2b0afdfdcc2665495a3a
size: '191564'
- name: libapt-pkg-dev_1.4.11_amd64.deb
sha1: 63ec86106d6c199c333e1d300f89ca8dab1d98c5
size: '235546'
- name: libapt-pkg5.0-dbgsym_1.4.11_amd64.deb
sha1: 8e3763176081409b5660bcdc82ee22a9362524be
size: '6076044'
- name: libapt-pkg5.0_1.4.11_amd64.deb
sha1: c6c4f299f67553b87776098a199bf7342d8d2c6a
size: '917338'
Checksums-Sha256:
- name: apt-dbgsym_1.4.11_amd64.deb
sha256: 32511f48debfa2cac947d75c854a32ee7b56b1041a590a265d6e4aa6c7e59ea7
size: '4452082'
- name: apt-transport-https-dbgsym_1.4.11_amd64.deb
sha256: 107779096670ce2a6b4df49cef0242736e0002ee947a392756ba1f60e1ab17b4
size: '292530'
- name: apt-transport-https_1.4.11_amd64.deb
sha256: 86a1f3aaa882ead469f0b3c99c2a9fbb079b7e05ee8d0cff4b34795a68543f1c
size: '171084'
- name: apt-utils-dbgsym_1.4.11_amd64.deb
sha256: 7dbc448592bf36b8ac7921b728374f71d04b79352c0cecf2162ca0bbda54a565
size: '1289242'
- name: apt-utils_1.4.11_amd64.deb
sha256: 6d64dd09b41365d8b18d55c475603cb08654aeaa2df6ebf0d9309b2147e1f816
size: '410346'
- name: apt_1.4.11_amd64.buildinfo
sha256: 19c9b4bbc4e6fe1a390bc0d6e06856c14d33469e8b07651a2f8454879f192257
size: '9601'
- name: apt_1.4.11_amd64.deb
sha256: 43dd52fd62c261209e2f3b783cee6cdcac38ad9456a8372cfb9954f1a933d476
size: '1231926'
- name: libapt-inst2.0-dbgsym_1.4.11_amd64.deb
sha256: 2dc3be65e837779fc2d262c4d6a0d5f27fe05cdd81a10ac7ccb176138d8f6844
size: '221828'
- name: libapt-inst2.0_1.4.11_amd64.deb
sha256: 85218faaab757134028cbbf03ce0e45851243ca4b6b9826548734cd560c69c8d
size: '191564'
- name: libapt-pkg-dev_1.4.11_amd64.deb
sha256: fc4e794457f32f1b2e95e588a97ca3d2921db58c54d07b09cfd3634d0c418630
size: '235546'
- name: libapt-pkg5.0-dbgsym_1.4.11_amd64.deb
sha256: edbbfe586a51a1fd0bf5d6cca4c6bbe01b5bda6ea6c9ec5768c03281c32d73a7
size: '6076044'
- name: libapt-pkg5.0_1.4.11_amd64.deb
sha256: c0b493ce76799a8b31e88e25b5be707e73dad4c2de89ad781064673d7e03a0c5
size: '917338'
Date: Mon, 07 Dec 2020 13:45:23 +0100
Description: |2-
apt - commandline package manager
apt-doc - documentation for APT
apt-transport-https - https download transport for APT
apt-utils - package management related utility programs
libapt-inst2.0 - deb package format runtime library
libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst
libapt-pkg-doc - documentation for APT development
libapt-pkg5.0 - package management runtime library
Distribution: stretch
Files:
- md5sum: da030d2f23880f46207b0a79eea0549d
name: apt-dbgsym_1.4.11_amd64.deb
priority: extra
section: debug
size: '4452082'
- md5sum: fe47bfc38849f583817774bab49bec54
name: apt-transport-https-dbgsym_1.4.11_amd64.deb
priority: extra
section: debug
size: '292530'
- md5sum: af509272ae68d8e9b9079bc397d35eba
name: apt-transport-https_1.4.11_amd64.deb
priority: optional
section: admin
size: '171084'
- md5sum: a020fdb73519358b21426a3a57af0748
name: apt-utils-dbgsym_1.4.11_amd64.deb
priority: extra
section: debug
size: '1289242'
- md5sum: 88f435bfc442dee5e5890c220ff1c969
name: apt-utils_1.4.11_amd64.deb
priority: important
section: admin
size: '410346'
- md5sum: 97cadb480e40cd092acd9ba9b80b9319
name: apt_1.4.11_amd64.buildinfo
priority: important
section: admin
size: '9601'
- md5sum: 17b27d479c28d9a0c90ec7d77d7e6711
name: apt_1.4.11_amd64.deb
priority: important
section: admin
size: '1231926'
- md5sum: b9329cbc600ab36750aef94a1e31c79b
name: libapt-inst2.0-dbgsym_1.4.11_amd64.deb
priority: extra
section: debug
size: '221828'
- md5sum: 0a95592245059d883608f01768e399b7
name: libapt-inst2.0_1.4.11_amd64.deb
priority: important
section: libs
size: '191564'
- md5sum: 862a2b82ca226cfa3e9592cb91023839
name: libapt-pkg-dev_1.4.11_amd64.deb
priority: optional
section: libdevel
size: '235546'
- md5sum: 38afc652a66a25e34455a5f24ba2a016
name: libapt-pkg5.0-dbgsym_1.4.11_amd64.deb
priority: extra
section: debug
size: '6076044'
- md5sum: 4932fd888d630444a9f1c02ac7dbc4da
name: libapt-pkg5.0_1.4.11_amd64.deb
priority: important
section: libs
size: '917338'
Format: '1.8'
Maintainer: APT Development Team <deity@lists.debian.org>
Source: apt
Urgency: high
Version: 1.4.11
type: dpkg