-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 05 Apr 2025 07:36:55 +0200 Source: expat Binary: expat expat-dbgsym libexpat1 libexpat1-dbgsym libexpat1-dev libexpat1-udeb Architecture: i386 Version: 2.5.0-1+deb12u2 Distribution: bookworm Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: Laszlo Boszormenyi (GCS) Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Changes: expat (2.5.0-1+deb12u2) bookworm; urgency=medium . [ Tomas Korbar ] * Backport security fix for CVE-2023-52425: denial of service with really big tokens. * Backport security fix for CVE-2024-50602: crash within the XML_ResumeParser() function because XML_StopParser can stop/suspend an unstarted parser. * Backport security fix for CVE-2024-8176: long linear chains of entities crash with stack overflow. . [ Laszlo Boszormenyi (GCS) ] * Update libexpat1 symbols. Checksums-Sha1: bb4fd66f798bf97938f89bb1450771d59648979b 28592 expat-dbgsym_2.5.0-1+deb12u2_i386.deb 8d84818f3a14f23929363ce085ff9cc231a74502 8840 expat_2.5.0-1+deb12u2_i386-buildd.buildinfo 1873e2c9943ace6dfb2908a7a70371036c0a94e4 41372 expat_2.5.0-1+deb12u2_i386.deb 857ce1e9e0040a9d45ca2e13b69b3efd3041176b 297552 libexpat1-dbgsym_2.5.0-1+deb12u2_i386.deb f6014ebb455073bf89c5f374208c144d2f07b4f2 160596 libexpat1-dev_2.5.0-1+deb12u2_i386.deb e37d9fcad43e590339fcb7227e2eacf5eeda2113 60684 libexpat1-udeb_2.5.0-1+deb12u2_i386.udeb f50accea2e8b94d2b5ff2b4f3419ec7ab1c64e31 104388 libexpat1_2.5.0-1+deb12u2_i386.deb Checksums-Sha256: 13065d07c8884fb380f4222158ca3383c779db3a1d5d9f2ebf28953c7661164b 28592 expat-dbgsym_2.5.0-1+deb12u2_i386.deb 0dad89c8093037e8d7e7fb97528ed82484d9ef8f3c0224ac1dd7b57f9ba31183 8840 expat_2.5.0-1+deb12u2_i386-buildd.buildinfo 1df849da24b21c1b528e73dc7579be211ccaed20a54bb9e66c74540beb259561 41372 expat_2.5.0-1+deb12u2_i386.deb 9728e868d59f2a683d6fe92e56e929b2f9ddb171a6659b2d27f41b0c258b1f0f 297552 libexpat1-dbgsym_2.5.0-1+deb12u2_i386.deb 9530e4a25bf2363867f2459a89d50c5d4c60a92259a46b1de8e2cdd16a3415b7 160596 libexpat1-dev_2.5.0-1+deb12u2_i386.deb 1677c9d4c816e003d0649435191fdb3c1a0be12c3272659616263e243bed73b9 60684 libexpat1-udeb_2.5.0-1+deb12u2_i386.udeb 002fa75e3acfa317aee466c83e4f709db027d25110d2c548fd9483e196e3659d 104388 libexpat1_2.5.0-1+deb12u2_i386.deb Files: edbf8c517e3596190dd04e26dfae9349 28592 debug optional expat-dbgsym_2.5.0-1+deb12u2_i386.deb 94d67e459807dd481c81e6133f39eac1 8840 text optional expat_2.5.0-1+deb12u2_i386-buildd.buildinfo d7735335e7eadea57fa4540c72b67e09 41372 text optional expat_2.5.0-1+deb12u2_i386.deb fa79b2bb785679ad43eacaf7a82d2c14 297552 debug optional libexpat1-dbgsym_2.5.0-1+deb12u2_i386.deb 284f791343a08c965520a1ed4e550273 160596 libdevel optional libexpat1-dev_2.5.0-1+deb12u2_i386.deb 6c11640f95d736d9d78200da8fb2745f 60684 debian-installer optional libexpat1-udeb_2.5.0-1+deb12u2_i386.udeb aae6ca9eff6c85898e23e5562f25af4b 104388 libs optional libexpat1_2.5.0-1+deb12u2_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErwLLVsiCiGZggzpHJuP6X4A0XeIFAmg7eHcACgkQJuP6X4A0 XeLiqA//adeTm33m4LAp4dysYhdcxmCa++2IvinWABf7SzHAnbpv0TZDUKKeyRhM slzKmxOQsEAankU7RV7Mkff0DKT7rpCm1hzsdX5rvpuy7/lErlXMuBi6vKFgSp/w 7uauoVvLiWZ29nHh+Cyv7Q4y73SqLzq0P4LuG9K0WSTo9A8K5LG2zqlHlg4gW1Lv GnFasjS0NyQJ+nekbjNrUBEeeZ+tH1CpMBYxUToZofcEgg54IkmBPwbtuuPU6T1h r4036vN4nXm1Wc/zNdYvGEAcJGWV5c3KF//nHDuG4w63ghRcVovUc2KHQvrtTPaF bUlGAH6mOY3lBmpMHRU38CKsQZL0sOORrDUoDrG/MVOvCXg1Bcd0oj4r3Ta5sjkE b3ssFPzSH7CU0GzjHQOK8/UVt1l29tSrf7BRD6+IcV+ovri6/7Fw5PUYASVoqKPd 8aRougJwm7VCozmkjTDMpI96hFCUvaCIFGzfAHFs7UBnPWbQjnlGqwy9PBPIOIvr yXJTnwlAth/g47foipKNO23SaWLb/YsqwdjAgNZfO2nzbNadPRzswusKpvBoCy9O cY93pGQJ0iaAgocHZSC79skiXTPITVcPiLfG2RkTpFleLlhpkl7WzuF+5IVp8pkz t1OZhyL7zsOSI0CgmVg4G2cpeKOs5iKg0jkg0N6P28ZHfAjYK48= =B8af -----END PGP SIGNATURE-----