Format: 1.8
Date: Fri, 14 Oct 2022 17:22:43 -0300
Source: zlib
Binary: zlib1g zlib1g-dev zlib1g-udeb
Architecture: armhf
Version: 1:1.2.11.dfsg-2ubuntu1.5
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-005.buildd>
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Description:
 zlib1g     - compression library - runtime
 zlib1g-dev - compression library - development
 zlib1g-udeb - compression library - runtime for Debian installer (udeb)
Launchpad-Bugs-Fixed: 1988548
Changes:
 zlib (1:1.2.11.dfsg-2ubuntu1.5) focal-security; urgency=medium
 .
   * SECURITY UPDATE: heap-based buffer over-read (LP: #1988548)
     - debian/patches/CVE-2022-37434-1.patch: in inflate.c, add an extra
       condition to check if state->head->extra_max is greater than len
       before copying, and move the len assignment to be placed before the
       check.
     - debian/patches/CVE-2022-37434-2.patch: in the previous patch, in
       inflate.c, the place of the len assignment was causing issues so it
       was moved to be placed within the check.
     - CVE-2022-37434
Checksums-Sha1:
 da1bae4dacb0db233c1c0624258fbb6f2bb8b555 101664 zlib1g-dbgsym_1.2.11.dfsg-2ubuntu1.5_armhf.ddeb
 f549ec853aea7c66a0c1d855967aa254b4520625 150288 zlib1g-dev_1.2.11.dfsg-2ubuntu1.5_armhf.deb
 9298e3b52168710a5263a6abeb8a8f5481b3f91a 44944 zlib1g-udeb_1.2.11.dfsg-2ubuntu1.5_armhf.udeb
 4368715fd52e4805f4bb4996b9f5ca78db395d4b 49308 zlib1g_1.2.11.dfsg-2ubuntu1.5_armhf.deb
 a1b6d6d131679a4cec72088cd884824fd0d4705e 6076 zlib_1.2.11.dfsg-2ubuntu1.5_armhf.buildinfo
Checksums-Sha256:
 175229e2f295859f7722fda68aae8f8e09fdf1c4843759f2f0a5c308ab644e58 101664 zlib1g-dbgsym_1.2.11.dfsg-2ubuntu1.5_armhf.ddeb
 20fe2363114d31f6a64b6ddc3c4b60495ab930e59fe77997ad086f9150d27020 150288 zlib1g-dev_1.2.11.dfsg-2ubuntu1.5_armhf.deb
 bbd966b1523dd54e154480e1034f7ca477b6c22b89fc8433844b6f96dbc9ac6a 44944 zlib1g-udeb_1.2.11.dfsg-2ubuntu1.5_armhf.udeb
 2bc02edff3ef93ca72abeeac1d3f9ee27069c1909b2342e69c802ac78474b934 49308 zlib1g_1.2.11.dfsg-2ubuntu1.5_armhf.deb
 a3736175d68aa91c4e70e8fb6664a2cd40a3e4133f55160058bfaf32c7ebb8a9 6076 zlib_1.2.11.dfsg-2ubuntu1.5_armhf.buildinfo
Files:
 764a92a85ca7ac9db2a761b457c501b9 101664 debug optional zlib1g-dbgsym_1.2.11.dfsg-2ubuntu1.5_armhf.ddeb
 7101288c8a5cd90e9e81a98dfacf5468 150288 libdevel optional zlib1g-dev_1.2.11.dfsg-2ubuntu1.5_armhf.deb
 5c03bf251a7d476bedd236e6264f87dc 44944 debian-installer optional zlib1g-udeb_1.2.11.dfsg-2ubuntu1.5_armhf.udeb
 37072fdb979d83b597eaad859d2722de 49308 libs required zlib1g_1.2.11.dfsg-2ubuntu1.5_armhf.deb
 3ce36df831a0ec5830b66a96fe85e81e 6076 libs optional zlib_1.2.11.dfsg-2ubuntu1.5_armhf.buildinfo
Original-Maintainer: Mark Brown <broonie@debian.org>
Package-Type: udeb