]> git.gag.com Git - debian/gzip/blobdiff - debian/changelog
projects / debian / gzip / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
fix for CVE-2010-0001
[debian/gzip] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index 4a5982f7fa03deddfb48a4efb323573e3acb2647..59c62c97149ae758fc76435f7764fab9cb6998ff 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,8 +1,12 @@
-gzip (1.3.12-9) UNRELEASED; urgency=low
+gzip (1.3.12-9) unstable; urgency=high
 
+  * fix applied for CVE-2010-0001 which identified an integer underflow when 
+    decompressing files that are compressed using the LZW algorithm. This 
+    could lead to the execution of arbitrary code when trying to decompress 
+    a crafted LZW compressed gzip archive.
   * switch to using dh_lintian for override delivery
 
- -- Bdale Garbee <bdale@gag.com>  Thu, 18 Jun 2009 14:15:42 -0600
+ -- Bdale Garbee <bdale@gag.com>  Thu, 21 Jan 2010 07:38:41 +1300
 
 gzip (1.3.12-8) unstable; urgency=low
 
Debian packaging of gzip