-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 05 Apr 2025 07:36:55 +0200 Source: expat Binary: expat expat-dbgsym libexpat1 libexpat1-dbgsym libexpat1-dev libexpat1-udeb Architecture: amd64 Version: 2.5.0-1+deb12u2 Distribution: bookworm Urgency: medium Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) Changed-By: Laszlo Boszormenyi (GCS) Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Changes: expat (2.5.0-1+deb12u2) bookworm; urgency=medium . [ Tomas Korbar ] * Backport security fix for CVE-2023-52425: denial of service with really big tokens. * Backport security fix for CVE-2024-50602: crash within the XML_ResumeParser() function because XML_StopParser can stop/suspend an unstarted parser. * Backport security fix for CVE-2024-8176: long linear chains of entities crash with stack overflow. . [ Laszlo Boszormenyi (GCS) ] * Update libexpat1 symbols. Checksums-Sha1: 330fd8ea5b886ab9635dcf63169cfb5fdc29408d 32452 expat-dbgsym_2.5.0-1+deb12u2_amd64.deb c33505cc7e8629e10338be2c33e9a55ad86ac8ca 8928 expat_2.5.0-1+deb12u2_amd64-buildd.buildinfo 4300c45d7b4d1634e7f6cc9a8036b2ca998f1aeb 40644 expat_2.5.0-1+deb12u2_amd64.deb 4722e6e967123a9aa04508c5ca39f6ffb4278210 306432 libexpat1-dbgsym_2.5.0-1+deb12u2_amd64.deb ad58928ab55fde5ca6a7c2397f6f1f0e51dea885 150980 libexpat1-dev_2.5.0-1+deb12u2_amd64.deb 455c690f01c26de76e70c7e637954a55f1fafdbb 58100 libexpat1-udeb_2.5.0-1+deb12u2_amd64.udeb ca76ab6c22dfb4d567baa93062361ab927f80c11 99888 libexpat1_2.5.0-1+deb12u2_amd64.deb Checksums-Sha256: 246812c16fd2d2ed15e715c3e7f4b005e8737bebbdc90dc0c5cb9b3d00f2995f 32452 expat-dbgsym_2.5.0-1+deb12u2_amd64.deb dc1aed795446ca86b236226e433eee63349037f4f305bfc34827b38d0382cdff 8928 expat_2.5.0-1+deb12u2_amd64-buildd.buildinfo e1bd7917f8302dfcc31973e25496c436f7aaae5d393b8936b0b907ddba6a7c58 40644 expat_2.5.0-1+deb12u2_amd64.deb 99212741d86ecfcbdf918ed58ec28c1598f886ebcbd06c96b52003eefe16ae02 306432 libexpat1-dbgsym_2.5.0-1+deb12u2_amd64.deb 757279c1ce56ca88ca519e4c01cffd94e8480ce936f53fe9b0d61dc1bab20394 150980 libexpat1-dev_2.5.0-1+deb12u2_amd64.deb 4073fc63762892d7212ccaea9749c56458668d39eba292ed549260a1b7b56cd0 58100 libexpat1-udeb_2.5.0-1+deb12u2_amd64.udeb 2255e62fc22a86d2c544b8a3f516da9aee19383ad5742722ab4ce7f66a30dbc8 99888 libexpat1_2.5.0-1+deb12u2_amd64.deb Files: 8a1116a3d6e5b700799e4102006ce8fb 32452 debug optional expat-dbgsym_2.5.0-1+deb12u2_amd64.deb f1e1b15981629174303153f427fafdc1 8928 text optional expat_2.5.0-1+deb12u2_amd64-buildd.buildinfo 9c89d6724eee1d6796f28483eaf5504e 40644 text optional expat_2.5.0-1+deb12u2_amd64.deb 48a4470deffd7a1b4da119bee8ff7afe 306432 debug optional libexpat1-dbgsym_2.5.0-1+deb12u2_amd64.deb 97684d9641e2620d87e66650085e74cc 150980 libdevel optional libexpat1-dev_2.5.0-1+deb12u2_amd64.deb b203b7dc72a15a37eafbb43b14832cfc 58100 debian-installer optional libexpat1-udeb_2.5.0-1+deb12u2_amd64.udeb f5150efb6f21c50361fc1971ab8de870 99888 libs optional libexpat1_2.5.0-1+deb12u2_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEnw0rdzqckKx6dwRTEbCLukZn24oFAmg7eBUACgkQEbCLukZn 24p7xQ/9F6QZTPwisrpAlbYcsffx4QaZzcwxfeoj4kUVD4CyL1dCa8JEsYWusd7M A16rFZQd+T/lpdNOzfgrzpimXpL+kxn4D6oBPTQuV8Gx8DriFeCpPtv2GNLuyCKH m9zRbwSbu5MG99qphOdSKmltODMadQO0KcDkXQbTNX2BOCBa/Ik7dSwM9RjmySw/ 9LpVmrfOYtL/pHw8MFugY26l3AtHnY8s7fxF1y010Z6y+EGf+ogBy90o9Wez4qdT K9kQzBTOn35coZ0Yns+QRidCeyhJVRNf8DjWUTucTs6HTlw6Cr7wbfhEZEx1OKSB mRuOVdp6/K7OJQkOrJJF8YCY0VYmHeEm+9tQBCTq2ksvxSWM4dnNpXDC8HxI0BGd ahR3bQoRgswyTPA19WtDu7c9npnzJ1o15kv29wxfUTl1mSGa8lGUFgeJlvKFF9lS IM6nW4lJFpGz4bMjk0AsIUbkBgmwYG7TA7lKRcOsm7VRv2sNTf6koZeL5N8AX/71 PFtjPV2s0QOMRtPw/OtMuDSDcvpOIPE9S7upHd0y/0PFwA4NUazcjmtCC2u4vIBa n8vz7UpqMW8dI88ncct96zfKIp/WSxEtLbX3MmZzrB3jPdFNespoMBbB9TG2cn7d Mx4O5dEdRQQLl7OqFONitThaVh/+sAhkjdp/2RrvdtZ/OFH4MYI= =JBRe -----END PGP SIGNATURE-----