-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 22 Apr 2023 20:48:00 +0000 Source: pev Binary: pev pev-dbgsym Architecture: amd64 Version: 0.81-3+deb11u1 Distribution: bullseye Urgency: medium Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) Changed-By: David da Silva Polverari Description: pev - text-based tool to analyze PE files Closes: 1034725 Changes: pev (0.81-3+deb11u1) bullseye; urgency=medium . * debian/patches/0002-fix-bo-pe_exports.patch: created to fix a buffer overflow vulnerability present on libpe's pe_exports function from exports.c (CVE-2021-45423). Without this patch, a maliciously-crafted PE file opened by pev utilities can trigger arbitrary code execution. (Closes: #1034725) Checksums-Sha1: 401276b83bec341ae5fb8e1a87abc5bd20c8625d 401444 pev-dbgsym_0.81-3+deb11u1_amd64.deb 0d26dbd02c33264aace304f5a1c3e9a87f77fd02 6001 pev_0.81-3+deb11u1_amd64-buildd.buildinfo cba28f3ed5ff76e11eed769515a2561a14393cac 177056 pev_0.81-3+deb11u1_amd64.deb Checksums-Sha256: c04f08c9b4d738026539cbe533bc2eb4c7ebd134e33212ee5b02496b5f856c21 401444 pev-dbgsym_0.81-3+deb11u1_amd64.deb ce5ca997734a7265992637f774796ee65dc0c873c36276d2162904bb6cbd8577 6001 pev_0.81-3+deb11u1_amd64-buildd.buildinfo 4ce4894f427bb23d4578c762ff03b5f8b65b6fef08794e6be1de7f3200e0d63d 177056 pev_0.81-3+deb11u1_amd64.deb Files: deb306512b1fa7f79d228adb6f239d49 401444 debug optional pev-dbgsym_0.81-3+deb11u1_amd64.deb c43fac61817ac7dc8f3329710ab1cf79 6001 utils optional pev_0.81-3+deb11u1_amd64-buildd.buildinfo 542813fb2c4233dce070ac26ef6d9da8 177056 utils optional pev_0.81-3+deb11u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE2q+i4qaoTi/nmbi10RfxDyMLhSIFAmROfXwACgkQ0RfxDyML hSIraBAAlys76rPsHMv3tNfmpf2ex67YEx6cT+C5BRXSoE9pRMFB9bDi65jKAQ6z 49t7EamKDSOjR2BXmqp6ar1XBbLbbfO4X4BbtULtphRri3llJ5Rhe9ISGVNPnbos k5o3UQLoEy0poPKCvLxSVatK7vGNG6zF8l2RaNnT2OR1B1bb5O+cWNCgjHwW19ij N13elwohK64EAq2H9udjNaRWaAjqHbpugMNIwLPl0PSNCpX8MYE1CnjTRzBowDmf DR4+axVtYDUmYj4EZjNBi1ubfjsudPd8r8scnubqoCKVcJMTiA9aQn1i9aGev5TU wwKpEUHY2tKacU2At+gtqtNFy01XQtwYecZIMYfSioPUzhEPwL/Wx7CK1c9mW5gJ 4E04nbymc1iE7EAGwxDUwHRzr11PJ/0mU05EVOp7oPv8xalzCKkIsaPQPu2eyZKy eKCwnQcwI3DQbdpnULp27WJzgmXFrrqtt8oJlR4Yb0+Xt8Aej5L1Q8ysdrYGPoLK FomOu4/gLoWUmZJPawKaGTot6lbZl/gdye8vybW0dlP3gYwI1PeMrb7/5zQ0alNn xQQkfd7u0j36RL3AjjNb/Q8juXgJlcRC6EP7MAwVhRv+/DLlImGaBE5KZCVE2yHY +zc97GXCkzv4FRXcn5SH8l9JXu8YLgjlqgzWTkv3dyq4bK2/qJo= =7yph -----END PGP SIGNATURE-----