Format: 1.8 Date: Mon, 07 Dec 2020 13:45:23 +0100 Source: apt Binary: apt libapt-pkg5.0 libapt-inst2.0 apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: i386 Version: 1.4.11 Distribution: stretch Urgency: high Maintainer: APT Development Team Changed-By: Julian Andres Klode Description: apt - commandline package manager apt-doc - documentation for APT apt-transport-https - https download transport for APT apt-utils - package management related utility programs libapt-inst2.0 - deb package format runtime library libapt-pkg-dev - development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - documentation for APT development libapt-pkg5.0 - package management runtime library Changes: apt (1.4.11) stretch-security; urgency=high . * SECURITY UPDATE: Integer overflow in parsing (LP: #1899193) - apt-pkg/contrib/arfile.cc: add extra checks. - apt-pkg/contrib/tarfile.cc: limit tar item sizes to 128 GiB - apt-pkg/deb/debfile.cc: limit control file sizes to 64 MiB - test/*: add tests. - CVE-2020-27350 * Additional hardening: - apt-pkg/contrib/tarfile.cc: Limit size of long names and links to 1 MiB + * Fix autopkgtest regression in 1.8.2.1 security update Checksums-Sha1: a2ac313c9a94606acdea6131689c9fe105971f35 4312948 apt-dbgsym_1.4.11_i386.deb 25c7cdf2f0ab43ec78b568617d97ce9ec9f2a60d 281540 apt-transport-https-dbgsym_1.4.11_i386.deb 701a4cfec94152e1ef0ed5f88813338edf987427 174800 apt-transport-https_1.4.11_i386.deb 93c585ea19af243621a0e68d5d6c692a2e25629a 1240136 apt-utils-dbgsym_1.4.11_i386.deb f9bfeea009b3e8a8d080f7e9b69adc89efcef5ad 421614 apt-utils_1.4.11_i386.deb c8c51360c5178235b228b3d66283122cbb671c74 9504 apt_1.4.11_i386.buildinfo 0cefbe88a6f72c57182516c3e5e7b075c4b3462d 1264594 apt_1.4.11_i386.deb a84cca182d196f5930ce10c695fc2ceb49a3041e 214744 libapt-inst2.0-dbgsym_1.4.11_i386.deb 1b7d42f194465dc96394c330f236250eeb3f64fb 193708 libapt-inst2.0_1.4.11_i386.deb 44849f0a98ec86a1407e5886ec54ea19b73d2010 235542 libapt-pkg-dev_1.4.11_i386.deb db2d5a260cdd6efb96e8be22ec21f206e447e462 5832688 libapt-pkg5.0-dbgsym_1.4.11_i386.deb e32ef53c277708346082e6d3095aa90c11c0221a 989090 libapt-pkg5.0_1.4.11_i386.deb Checksums-Sha256: 62a1b19197ea48ec4665dd3ef6d63d07e641ec0879afa87aeb8fd0057d482184 4312948 apt-dbgsym_1.4.11_i386.deb 8d433548793dee6c5249bfd643c6e83c84e0bce0c3256139d542c03a8bb561e3 281540 apt-transport-https-dbgsym_1.4.11_i386.deb 67629fc6470f4cda58208420196fab8cde3a8bbdb1a1553600cec781c3e74dc3 174800 apt-transport-https_1.4.11_i386.deb cfa4786e5e46cf4eb26fe336aa923ebe07d503b6d82a7ce033593330bf160c92 1240136 apt-utils-dbgsym_1.4.11_i386.deb 74c44249cf77f087ddd1d50fe592a867ccd68dd2f207b4b37224dc0ab7ccb6e9 421614 apt-utils_1.4.11_i386.deb a06b29d9960a552676ead63a82864081613abd947f84eb5a77716205f65f876b 9504 apt_1.4.11_i386.buildinfo 1b2b3202f13c5ac835ccd6fea63478d93e1778045f61dc5058bb5b75a319b597 1264594 apt_1.4.11_i386.deb 6e79fe7bcd09bc3fb0943519a584c399d652d4014afd8a06686ebe9c17f50b3a 214744 libapt-inst2.0-dbgsym_1.4.11_i386.deb ff5b2b68336a56975d5c30f93398c42001fae47a05a0b2f4801e0e63598f83d8 193708 libapt-inst2.0_1.4.11_i386.deb fc1302955702464eb9f4466fba706d166868ae34eeef46757fd848119e13b6a3 235542 libapt-pkg-dev_1.4.11_i386.deb 7856f719262e6252d7472ebf0e8431d866c7b61cf78db31bd1eb20dc8417428e 5832688 libapt-pkg5.0-dbgsym_1.4.11_i386.deb 68548cafe413403d29dca2df4da14e0cfc9b19fbe30421d41c302643b04ef230 989090 libapt-pkg5.0_1.4.11_i386.deb Files: fa3356f844fee0742519d9c4581fef51 4312948 debug extra apt-dbgsym_1.4.11_i386.deb 0cd5617eec11ecfd9ef4b02ee9bb9fde 281540 debug extra apt-transport-https-dbgsym_1.4.11_i386.deb 4a9e3a12dab390463de782e837099d23 174800 admin optional apt-transport-https_1.4.11_i386.deb ac2f213e14475a33fe36d27d143bd97a 1240136 debug extra apt-utils-dbgsym_1.4.11_i386.deb 8472ca8052c6335991845f5825691309 421614 admin important apt-utils_1.4.11_i386.deb 775b1f68a9f44828f5879886381e21d3 9504 admin important apt_1.4.11_i386.buildinfo 0775fe3a094225292adcec48eb53ff0b 1264594 admin important apt_1.4.11_i386.deb e8e51a261485170177afe36451e03760 214744 debug extra libapt-inst2.0-dbgsym_1.4.11_i386.deb c96a7bcfe00f4189d659d1c967737459 193708 libs important libapt-inst2.0_1.4.11_i386.deb 75a9edf79252fe324838c3df92953bf9 235542 libdevel optional libapt-pkg-dev_1.4.11_i386.deb b77464f5e49b1c08cbd39d43c1172edb 5832688 debug extra libapt-pkg5.0-dbgsym_1.4.11_i386.deb 7cdc1f6553dcaa0a20258733ddc09c97 989090 libs important libapt-pkg5.0_1.4.11_i386.deb