-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 18 Aug 2023 12:44:49 +0200 Source: fastdds Binary: fastdds-tools fastdds-tools-dbgsym libfastrtps-dev libfastrtps2.9 libfastrtps2.9-dbgsym Architecture: amd64 Version: 2.9.1+ds-1+deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: amd64 / i386 Build Daemon (x86-csail-01) Changed-By: Timo Röhling Description: fastdds-tools - eProsima FastDDS Discovery Server and Tools libfastrtps-dev - C++ library for the Real Time Publish Subscribe Protocol - develo libfastrtps2.9 - C++ library for the Real Time Publish Subscribe Protocol Closes: 1043548 Changes: fastdds (2.9.1+ds-1+deb12u1) bookworm-security; urgency=medium . * Backport security fixes - CVE-2023-39534 Malformed GAP submessage triggers assertion failure - CVE-2023-39945 Unhandled exception on malformed data submessage - CVE-2023-39946 Heap overflow triggered by PID_PROPERTY_LIST - CVE-2023-39947 Heap overflow triggered by PID_PROPERTY_LIST - CVE-2023-39948 Uncaught fastcdr exceptions - CVE-2023-39949 Improper validation of sequence numbers (Closes: #1043548) Checksums-Sha1: 4163ad75e088e94f4dc99ca6d4ef180ceb620bdc 659952 fastdds-tools-dbgsym_2.9.1+ds-1+deb12u1_amd64.deb 7d9c0f38278fd43c6242f4ab6a998ddcd53eec6d 46324 fastdds-tools_2.9.1+ds-1+deb12u1_amd64.deb 931166d45314ee553099a01f6f4cd818d6c4d241 10198 fastdds_2.9.1+ds-1+deb12u1_amd64-buildd.buildinfo 374e2abdd0a78190e0b96128087108a9b9055b4d 281912 libfastrtps-dev_2.9.1+ds-1+deb12u1_amd64.deb ff1e8da999f1e0a6f31dd81891a05a983057e518 57437592 libfastrtps2.9-dbgsym_2.9.1+ds-1+deb12u1_amd64.deb 5f8dee6c22581d12801502ab66c57024a3d123f6 2211104 libfastrtps2.9_2.9.1+ds-1+deb12u1_amd64.deb Checksums-Sha256: b7d2bc6bce6e958023813e38628519ef17579529d0b9ceab0ca8df699f58dd78 659952 fastdds-tools-dbgsym_2.9.1+ds-1+deb12u1_amd64.deb 88162d40c92342c6f4437af6641e4a9677a677963ee151c346c812264ebe52b0 46324 fastdds-tools_2.9.1+ds-1+deb12u1_amd64.deb 0e377e09a2c7bcfe182016b9abaa642373bb1351db682f2889959f7a6bd10c54 10198 fastdds_2.9.1+ds-1+deb12u1_amd64-buildd.buildinfo ea81c76c574d421b04accd1f7e7e873c25939aefba6bfc89a1e8d1112f44dae9 281912 libfastrtps-dev_2.9.1+ds-1+deb12u1_amd64.deb ba8cce7f8432f9b635cfd02a64447167b365ac01487421955eaf9e02b67209f3 57437592 libfastrtps2.9-dbgsym_2.9.1+ds-1+deb12u1_amd64.deb 9566ee7781b308130612a378289f8fb26eefb8f2fc8203e459c05ffa47a207bb 2211104 libfastrtps2.9_2.9.1+ds-1+deb12u1_amd64.deb Files: 1d55ceb4d441f63ad544f04d30e8d460 659952 debug optional fastdds-tools-dbgsym_2.9.1+ds-1+deb12u1_amd64.deb f89a3252e6073cbf77efbd82d2f3cac3 46324 net optional fastdds-tools_2.9.1+ds-1+deb12u1_amd64.deb 1c15e125ab1aa2d081fccdb57bec5619 10198 libs optional fastdds_2.9.1+ds-1+deb12u1_amd64-buildd.buildinfo c8b7ac020ec72a305a1bec82311b5432 281912 libdevel optional libfastrtps-dev_2.9.1+ds-1+deb12u1_amd64.deb e9c07ef435c3f9230734c500d0f34c09 57437592 debug optional libfastrtps2.9-dbgsym_2.9.1+ds-1+deb12u1_amd64.deb 1d3d04dbdb2cdbcc99ef313e2cbe3540 2211104 libs optional libfastrtps2.9_2.9.1+ds-1+deb12u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE85oDfSLnwLkvY4Ibj5YjFeDZ0JMFAmTfZjUACgkQj5YjFeDZ 0JONyA//XnMSk9ivgZiPlvFQL8JvBqrdfpPe7KUKoCipsXh07uovJffr47toPbao q+2pyIFl+g5cFI5j4nm3L8WsNvz+Uz3iyZRiNPz+L8C88qkyc7UenU+u0PQuclv4 PlkGyOoMl5Mi2YATEsKDTGOdczS46YhCkWmZt2ueUfeHa76P6dmat26y8JAJcYjc RXsAY5Zf+TJQz2AblMx3XBH2d/7gx6FPpKKeMWGfHFJAMl+MMf+bjddjMQ0MiDs6 NC+hMZHM+JVwuPIOK3iUQHDhQbA1qWlyM+lKPhgo4JRqrTQUXPZigtw8wdKeW7Hi zRa/bwqhGYum3/8EhxxBPkM6FsRTiZzv/2XrhuPFzuNEb56yOnAbYFHVos1FMC/e 6c++XTHYFliBRqLK36bvCWxNI9EzbPjj/K5+MoJaPX9ukk15jGBFZkjWkmXO1GzF T2hMi6FslfuYIb724OpVDUQ1qNlmdNZFIcqtqbvvWe/aIqZudyTb8kaoY2jEQA8y SeRdrSTq4lBMFFbWU9e4Qmk/C4vXqhsAkxMDxLpT1SpI2JUWt+A3MI1pzMCQRmSr boFAU9fCWihebDCqKTrDUmqcG05w9xFKGfOGuoKnl2rTIECG+YRzcVb8JWvCJTVk Z/R8Wi2b53Dyp6VLMpxew3Sge5abV9Qd9HsFTWvDMtdUgHkHOw4= =9TFI -----END PGP SIGNATURE-----