-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 10 Aug 2023 14:51:14 +0200 Source: efibootguard Binary: efibootguard efibootguard-dbgsym libebgenv-dev libebgenv0 libebgenv0-dbgsym Architecture: i386 Version: 0.13-2+deb12u1 Distribution: bookworm Urgency: medium Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) Changed-By: Gylstorff Quirin Description: efibootguard - UEFI-based bootloader libebgenv-dev - efibootguard development files libebgenv0 - efibootguard library files Closes: 1049436 Changes: efibootguard (0.13-2+deb12u1) bookworm; urgency=medium . * d/patches: Backport fix to address CVE-2023-39950 Backport of security fix for CVE-2023-39950, Insufficient or missing validation and sanitization of input from untrustworthy bootloader environment files can cause crashes and probably also code injections into `bg_setenv`) or programs using `libebgenv`. (Closes: #1049436) Checksums-Sha1: 54660fb1d5f9501d1d4659ad449b63651c8d3a8e 50136 efibootguard-dbgsym_0.13-2+deb12u1_i386.deb e55ef4679745187738c86f3b2fc5e42ff927f1f8 7730 efibootguard_0.13-2+deb12u1_i386-buildd.buildinfo 8d3143a7b4d15b1db5a2a1be6a52a11b9f5135fd 68236 efibootguard_0.13-2+deb12u1_i386.deb 39cdc4a9c2e4392d01171235b808be190ddfc354 19360 libebgenv-dev_0.13-2+deb12u1_i386.deb 2fba02eeafa53eb91ed94dcf134d46c7c83b2b58 34244 libebgenv0-dbgsym_0.13-2+deb12u1_i386.deb 964fa738d4eab03d7e6e894af78a99ea36b1900b 16796 libebgenv0_0.13-2+deb12u1_i386.deb Checksums-Sha256: 7a3a229bf18f4367f2cba870d55fe9dcd5519744da07861a2730f6666994d6c9 50136 efibootguard-dbgsym_0.13-2+deb12u1_i386.deb cf3705af673695dc27b46e4d9c8df7b8410c5db1184f595737d6b736d905748e 7730 efibootguard_0.13-2+deb12u1_i386-buildd.buildinfo bc3db9eaf10d594163fea99a7fd65a3682e8c294ddd0749b1f132cf26f6a3c6f 68236 efibootguard_0.13-2+deb12u1_i386.deb be0d22f178e302f0664f551648904e95c9eea5ba90f81ab11be1c99d02b8c882 19360 libebgenv-dev_0.13-2+deb12u1_i386.deb f26e91c93930feb601ee1639ad78a678ebb1e85cb3d194076201e40f43636d45 34244 libebgenv0-dbgsym_0.13-2+deb12u1_i386.deb 36b66f54f9dcb9cfabec9a4f1d2ebe1e2416edbc691084fbae918b47df4ec32f 16796 libebgenv0_0.13-2+deb12u1_i386.deb Files: 2140af9d02d9c4fd901f8ceb1d2fff1d 50136 debug optional efibootguard-dbgsym_0.13-2+deb12u1_i386.deb 216b78255570a5c11af6a9476fb2b72f 7730 admin optional efibootguard_0.13-2+deb12u1_i386-buildd.buildinfo 070dac5d19486cf2dd8d2563e401aa40 68236 admin optional efibootguard_0.13-2+deb12u1_i386.deb b9342df615de8135035c9f0e1eb8563d 19360 libdevel optional libebgenv-dev_0.13-2+deb12u1_i386.deb d8f45df7dff5ebcb02d068a8b7a9bdbb 34244 debug optional libebgenv0-dbgsym_0.13-2+deb12u1_i386.deb c5d45e2d590eb25fa12c6e45141cac68 16796 libs optional libebgenv0_0.13-2+deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEJyRdn7p9tGRfxctAots23/koc0EFAmTqFF8ACgkQots23/ko c0H82xAAlzbQkPXoH9O7/brZ9OmVvtOhyfSWvCSBCWs6PfW2e4LK0fdVPhe0E3N7 Pffcb4FHNWyOoVqGl/ARb+HBrJ06ZR278TRNw1qmPzWGqSkBY+YbJmXv35if9HTa CC6kNKqfwDB/IO5v8qxr3HatjkFTBXTY+O4v0QEgoa+Tu9MQvRIGKRbIqfK9UBUi ObIF74/eVk95Ei1u0R8FZZMt6CCeKreZBicAYhOFs7IQ1096AA9FDUJzkuSpjRmw 7blHAZ+fpu6EB3hR3iNafU/YrN+O0RhHbmVuWEDtUhDpLYB5Fk4wR4+OHzXuF0kM tWAUkQD1UwQSrz8h7s+NpAiXfTo6NN1HamsjyvOfGY8sWfjQ4mz4KxWzxvF7TEbk llWP3oKT4zzq3tINZjmQ6b5dkizBCLK7c3L7lwLBnJMEKRB7/JKUCWQNK75QoUYr tjJaVIO17SkuJZhcTCmj2hBdhx8T9zqbMXv5wvgBdmPlfscYuAgTS2Ma40TWmlhS M4byMyQScw0YIcbnD8V6vBYNxv4AGEn4vbaTdJwGTSFZI66AMJmIhKChv9fqkxHc 53Dzpd67F/FXZH4aZ9zFEBeD4+EbCIVc2HTMcb3/gM66T3JNiFEUZQD67gIKDGPB xybAg8JbZjhVuJrLayvHfKsEeR2tgN7yEIYGckq64/DMAM/Id1c= =7pg1 -----END PGP SIGNATURE-----