Format: 1.8
Date: Fri, 14 Oct 2022 17:22:43 -0300
Source: zlib
Binary: zlib1g zlib1g-dev zlib1g-udeb
Architecture: riscv64
Version: 1:1.2.11.dfsg-2ubuntu1.5
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@riscv64-qemu-lgw01-084.buildd>
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden@canonical.com>
Description:
 zlib1g     - compression library - runtime
 zlib1g-dev - compression library - development
 zlib1g-udeb - compression library - runtime for Debian installer (udeb)
Launchpad-Bugs-Fixed: 1988548
Changes:
 zlib (1:1.2.11.dfsg-2ubuntu1.5) focal-security; urgency=medium
 .
   * SECURITY UPDATE: heap-based buffer over-read (LP: #1988548)
     - debian/patches/CVE-2022-37434-1.patch: in inflate.c, add an extra
       condition to check if state->head->extra_max is greater than len
       before copying, and move the len assignment to be placed before the
       check.
     - debian/patches/CVE-2022-37434-2.patch: in the previous patch, in
       inflate.c, the place of the len assignment was causing issues so it
       was moved to be placed within the check.
     - CVE-2022-37434
Checksums-Sha1:
 ae7d54c04bd13acf0df0f3c42f56e9c04e507e21 99536 zlib1g-dbgsym_1.2.11.dfsg-2ubuntu1.5_riscv64.ddeb
 146f6a8aaa3c85ab0ce2d5b910aaaf843500dd9e 206732 zlib1g-dev_1.2.11.dfsg-2ubuntu1.5_riscv64.deb
 27415e41603e4f9856a85800d41b353a833ef2ac 47968 zlib1g-udeb_1.2.11.dfsg-2ubuntu1.5_riscv64.udeb
 664bcde0efc906450c3a15dd6d1f19874df1ffab 52284 zlib1g_1.2.11.dfsg-2ubuntu1.5_riscv64.deb
 10cd615b1ae700b906e7b72fb0d0375c1705391d 5982 zlib_1.2.11.dfsg-2ubuntu1.5_riscv64.buildinfo
Checksums-Sha256:
 6b42a7405b51dc143f0dcf104c9793fa24024b751e3dea8fd73ebc87e8ebf0dd 99536 zlib1g-dbgsym_1.2.11.dfsg-2ubuntu1.5_riscv64.ddeb
 7c9974b4172b51e296b657ed2b516e3d361c18cd8492e7bf1b9d3277d87ddc62 206732 zlib1g-dev_1.2.11.dfsg-2ubuntu1.5_riscv64.deb
 35533608ed507f86786b7e768f60f842a239912aef46783f58d578e96ec6dd9f 47968 zlib1g-udeb_1.2.11.dfsg-2ubuntu1.5_riscv64.udeb
 a8b2c2793cd4287050815a1e80709ffcec90449e2779134f20eb5c38c2511c44 52284 zlib1g_1.2.11.dfsg-2ubuntu1.5_riscv64.deb
 38f527baca1b5feef8425f31bf3f7ead12ab3eb579fc38ffa0d741d78cb2f586 5982 zlib_1.2.11.dfsg-2ubuntu1.5_riscv64.buildinfo
Files:
 1022257aa12142abcb095c051856b73a 99536 debug optional zlib1g-dbgsym_1.2.11.dfsg-2ubuntu1.5_riscv64.ddeb
 081d3684d5636b2bcd88a2b769518633 206732 libdevel optional zlib1g-dev_1.2.11.dfsg-2ubuntu1.5_riscv64.deb
 def5396dd9b57fb724943383ab5dab80 47968 debian-installer optional zlib1g-udeb_1.2.11.dfsg-2ubuntu1.5_riscv64.udeb
 a969f6e0ee2b0d5e3549ced86b91be00 52284 libs required zlib1g_1.2.11.dfsg-2ubuntu1.5_riscv64.deb
 99202d404e27a43a81826a9ce9db240e 5982 libs optional zlib_1.2.11.dfsg-2ubuntu1.5_riscv64.buildinfo
Original-Maintainer: Mark Brown <broonie@debian.org>
Package-Type: udeb