-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 29 Aug 2021 19:03:02 +0200
Source: squashfs-tools
Binary: squashfs-tools squashfs-tools-dbgsym
Architecture: i386
Version: 1:4.4-2+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 squashfs-tools - Tool to create and append to squashfs filesystems
Changes:
 squashfs-tools (1:4.4-2+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2021-40153
     unsquashfs unvalidated filepaths allow writing outside of destination.
Checksums-Sha1:
 c466be069574d86341d33e8c539177fcecabb128 347364 squashfs-tools-dbgsym_4.4-2+deb11u1_i386.deb
 7b542dc07ae3a5dd473ad2a55da55e88d4b420d9 5891 squashfs-tools_4.4-2+deb11u1_i386-buildd.buildinfo
 69a2dfa9ef4f27cbb85f45ff1bfbd365a603c4bc 148988 squashfs-tools_4.4-2+deb11u1_i386.deb
Checksums-Sha256:
 a956eab55be563f92129d97680fe763a49cbd66c4b4f9e583efa5961963841b3 347364 squashfs-tools-dbgsym_4.4-2+deb11u1_i386.deb
 1615be098e1ef0dbae32fdfa47041799a5a4a0f16b71c8842bb680b37c2fe09b 5891 squashfs-tools_4.4-2+deb11u1_i386-buildd.buildinfo
 bfeba0c97b4b67a4489aeebfa974fb9b5c1edae3377613a68d4f1389d2e50eca 148988 squashfs-tools_4.4-2+deb11u1_i386.deb
Files:
 6fa47b102ae2c43b9d8937d24befe424 347364 debug optional squashfs-tools-dbgsym_4.4-2+deb11u1_i386.deb
 0fb531405506d3258a007a9c6fb45e14 5891 kernel optional squashfs-tools_4.4-2+deb11u1_i386-buildd.buildinfo
 fdd68d312d716dc61191d58eadbe1ad5 148988 kernel optional squashfs-tools_4.4-2+deb11u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=VHK2
-----END PGP SIGNATURE-----