-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 10 Aug 2023 14:51:14 +0200 Source: efibootguard Binary: efibootguard efibootguard-dbgsym libebgenv-dev libebgenv0 libebgenv0-dbgsym Architecture: armhf Version: 0.13-2+deb12u1 Distribution: bookworm Urgency: medium Maintainer: arm Build Daemon (arm-arm-04) Changed-By: Gylstorff Quirin Description: efibootguard - UEFI-based bootloader libebgenv-dev - efibootguard development files libebgenv0 - efibootguard library files Closes: 1049436 Changes: efibootguard (0.13-2+deb12u1) bookworm; urgency=medium . * d/patches: Backport fix to address CVE-2023-39950 Backport of security fix for CVE-2023-39950, Insufficient or missing validation and sanitization of input from untrustworthy bootloader environment files can cause crashes and probably also code injections into `bg_setenv`) or programs using `libebgenv`. (Closes: #1049436) Checksums-Sha1: 28e7683d4db56dfe1db2f9c048a63f2da03d6369 56876 efibootguard-dbgsym_0.13-2+deb12u1_armhf.deb a40f8127f674d49bd19d9746d87e7030f9665cd7 7674 efibootguard_0.13-2+deb12u1_armhf-buildd.buildinfo 208268de347878e46896bd01e82a945629dbcc76 53108 efibootguard_0.13-2+deb12u1_armhf.deb 9b8b18a0a414c4c94ac3fcaddd49fa7b2e102694 15720 libebgenv-dev_0.13-2+deb12u1_armhf.deb 770a9157b2e5b03abf48784ab079cd8b3c4550a4 39324 libebgenv0-dbgsym_0.13-2+deb12u1_armhf.deb 578bb9c60bdbf028f49f8fa18c117b2b9376ea51 13232 libebgenv0_0.13-2+deb12u1_armhf.deb Checksums-Sha256: 7e0dd66cb404b50bbc391ab2fb7a9af3bc76dc03ccfbfa7239567130bc4d9c25 56876 efibootguard-dbgsym_0.13-2+deb12u1_armhf.deb 2f20c834149c6aa086eaa538f44c81b2c54c159cb4cc958781167caef402803d 7674 efibootguard_0.13-2+deb12u1_armhf-buildd.buildinfo 41fb8af2f199b6d397e7378967fcfd8c9122ee1589a16a53dc7c71cfd464c768 53108 efibootguard_0.13-2+deb12u1_armhf.deb f2092a6c893f82dd85e9cd47935b110221755e24f1e6a46612225d089c2a26ac 15720 libebgenv-dev_0.13-2+deb12u1_armhf.deb 0a2905ef4325aa32081a1d862a4065b8075334a443b613c99cba667a138f14d9 39324 libebgenv0-dbgsym_0.13-2+deb12u1_armhf.deb 67479092296a3cda3343ea76a1d10950578a4b4ec822c9b2c05b03cb40a822bb 13232 libebgenv0_0.13-2+deb12u1_armhf.deb Files: dcc561effd475f04f5cc4a0333491938 56876 debug optional efibootguard-dbgsym_0.13-2+deb12u1_armhf.deb b1abefc835c1f93e81dbb745269ce232 7674 admin optional efibootguard_0.13-2+deb12u1_armhf-buildd.buildinfo ce3c37e9e3012f14eee251fe868b615a 53108 admin optional efibootguard_0.13-2+deb12u1_armhf.deb e68cdaa101b76f881157e02cbfa4c116 15720 libdevel optional libebgenv-dev_0.13-2+deb12u1_armhf.deb 34f0e14dbc7de1206525f2cb5075808b 39324 debug optional libebgenv0-dbgsym_0.13-2+deb12u1_armhf.deb 898b52a4b18efaabeae3b666710f0e0f 13232 libs optional libebgenv0_0.13-2+deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEmUDOxnfDwdc47jJKqoc2e3yvTA0FAmTqFFMACgkQqoc2e3yv TA2FuA//VdV0iOHI00XqhhR5Gu/fjd5dpkl9gvneUoGiOHwRB9AXIQpNY77vBlXD mbhGpD/pRfDWEvIe5f71EVGHpfYLyOs6q3WKhBN0qfFqHOkpQ9HMY2VUjVhJyk76 9m0tNFpT8TOfCA1K+nRdrRmfp6XSBiHBWcbFmtWz/VGQIHvozX/Xb3MV6V/kxIB4 V2sEqA1j76d4dNN7wNkoff1BhNjtMFisPF6D9LnZAESg7Lwd5NuNIevQbcwWthuO KiGJnWfm2Czkr7ePsHVFcA2+QZ5Zmbx2wP9MzTSd75mvpm2Bx95LefspO3DVf96D IWuCIzvAUxHRFYo5xp6+PfLYOrPKtnwWa8EU/ygys4tm+P37RfU7a9pjpYA6wzQl 8/l0RZEcgk58RqYmV2I/5aVFFnwYYhjd+iG9dfJVzWHykuQ5SKYR6HxpTnHMiMoO 5NpGPsIQ9PJOeVs7n+NrdGGAjCmZS3w4I2Jmjb2p9gvNMQTAMKSqkB1pcbUgiDDS JoPa4bf2qDpenYBG/NoQL/GZyxoijnl0D2jXQR4HXHuY3kCXwFtm+sZ5DKnxeN9P qEiGCUwThveReWTVHFEIYgC6gXVEhETJDX7iYnB5n3Ns1K0sb3Sih1hUJlYl6NGp lkq7hSkMFQGGNVh4nL345opMueAiMfCDWxzj4zyCrOHdMaTeFDU= =sB0G -----END PGP SIGNATURE-----