[ubuntu/xenial-proposed] unzip 6.0-19ubuntu1 (Accepted)

Fri Oct 23 14:02:42 UTC 2015

unzip (6.0-19ubuntu1) xenial; urgency=medium

  * Resynchronise with Debian. Remaining changes:
    - Add patch from archlinux which adds the -O option, allowing a charset
      to be specified for the proper unzipping of non-Latin and non-Unicode
      filenames.

unzip (6.0-19) unstable; urgency=medium

  * Fix infinite loop when extracting password-protected archive.
    This is CVE-2015-7697. Closes: #802160.
  * Fix heap overflow when extracting password-protected archive.
    This is CVE-2015-7696. Closes: #802162.
  * Fix additional unsigned overflow on invalid input.
  * Thanks a lot to Raphaël Hertzog for the squeeze-lts release,
    from which this upload is mainly derived.

unzip (6.0-18) unstable; urgency=medium

  * Ship a debian/copyright file in source package instead of generating
    it a build time. Closes: #795567.

Date: Fri, 23 Oct 2015 15:58:43 +0200
Changed-By: Sebastien Bacher <seb128 at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/unzip/6.0-19ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 23 Oct 2015 15:58:43 +0200
Source: unzip
Binary: unzip
Architecture: source
Version: 6.0-19ubuntu1
Distribution: xenial
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Sebastien Bacher <seb128 at ubuntu.com>
Description:
 unzip      - De-archiver for .zip files
Closes: 795567 802160 802162
Changes:
 unzip (6.0-19ubuntu1) xenial; urgency=medium
 .
   * Resynchronise with Debian. Remaining changes:
     - Add patch from archlinux which adds the -O option, allowing a charset
       to be specified for the proper unzipping of non-Latin and non-Unicode
       filenames.
 .
 unzip (6.0-19) unstable; urgency=medium
 .
   * Fix infinite loop when extracting password-protected archive.
     This is CVE-2015-7697. Closes: #802160.
   * Fix heap overflow when extracting password-protected archive.
     This is CVE-2015-7696. Closes: #802162.
   * Fix additional unsigned overflow on invalid input.
   * Thanks a lot to Raphaël Hertzog for the squeeze-lts release,
     from which this upload is mainly derived.
 .
 unzip (6.0-18) unstable; urgency=medium
 .
   * Ship a debian/copyright file in source package instead of generating
     it a build time. Closes: #795567.
Checksums-Sha1:
 8320704f1cd16a15b7146d3a2881ccc4c6c397c9 1142 unzip_6.0-19ubuntu1.dsc
 b508ff63abd1fc689dc32841ec484270cce61c67 19756 unzip_6.0-19ubuntu1.debian.tar.xz
Checksums-Sha256:
 e2ea98e6678a406b8f4c25641390706ea88505040e6440b9d4d11aa09ce2832f 1142 unzip_6.0-19ubuntu1.dsc
 59cd9a72069252670e4ba7090904a751cb8246c286e72bdeb16dc0fe0da37c3c 19756 unzip_6.0-19ubuntu1.debian.tar.xz
Files:
 9bdd890141649d2908b62dd0aec07015 1142 utils optional unzip_6.0-19ubuntu1.dsc
 2c58b748fd833ae3d233f260261b3d47 19756 utils optional unzip_6.0-19ubuntu1.debian.tar.xz
Original-Maintainer: Santiago Vila <sanvila at debian.org>