-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 21 Mar 2026 19:34:09 +0100 Source: 7zip Binary: 7zip 7zip-dbgsym Architecture: i386 Version: 22.01+really25.01+dfsg-0+deb12u1 Distribution: bookworm Urgency: high Maintainer: i386 Build Daemon (x86-grnet-01) Changed-By: Sylvain Beucler Description: 7zip - 7-Zip file archiver with a high compression ratio Closes: 1111068 Changes: 7zip (22.01+really25.01+dfsg-0+deb12u1) bookworm; urgency=high . * Non-maintainer upload by the LTS Security Team. * Bump to upstream 25.01, fixes: - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read operation via a crafted 7Z archive. - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE - CVE-2025-53817: null pointer dereference in the Compound handler may lead to denial of service - CVE-2025-55188: does not always properly handle symbolic links during extraction. (Closes: #1111068) * Sync patches from 25.01+dfsg-1~deb13u1: - keep old patches: - 000*-Remove-unwanted-hack-for-object-files.patch (no 7z.so) - drop new patches: - 000*-Use-c-flags-for-asmc.patch (no ASM) - 000*-Add-fpic-for-Asmc-options.patch (no ASM) - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch (behavior change) * No changes to packaging to avoid disruption in stable release (no split package, no ASM support, no files in /usr/lib/7z/, etc.) * Enable Salsa CI. * Configure git-buildpackage for oldstable. Checksums-Sha1: 6d36b04b4da90acffbf06c3ab1e1a12ff248e199 7066128 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_i386.deb 51f10dc24078d048eb4eb684d3cc6d8e3c36ad9d 6294 7zip_22.01+really25.01+dfsg-0+deb12u1_i386-buildd.buildinfo f2351a5cd06b11af0305db37abfce485912e9c88 1159028 7zip_22.01+really25.01+dfsg-0+deb12u1_i386.deb Checksums-Sha256: 953b1e55e8976445cb34d3978593dac3d4b21df1058e9e6a75c938cd329bc875 7066128 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_i386.deb 9f6036639577576b851e6d40b0b95beb5bfbdae4b62968cf7ce67737db031848 6294 7zip_22.01+really25.01+dfsg-0+deb12u1_i386-buildd.buildinfo 2e31a57168fe2f1cb01fff705b4fc5d86c07f28c099c774b865ff401d26b34af 1159028 7zip_22.01+really25.01+dfsg-0+deb12u1_i386.deb Files: 9a7a7a312e0e76619e36282be068b26e 7066128 debug optional 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_i386.deb b3a327ebe6b76921906acbe6e214e6b5 6294 utils optional 7zip_22.01+really25.01+dfsg-0+deb12u1_i386-buildd.buildinfo 50da115bcea017c254dea5319c9e268a 1159028 utils optional 7zip_22.01+really25.01+dfsg-0+deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEPAUaMA0H0rOy6qBWf2INRiCdaWIFAmn3SXIACgkQf2INRiCd aWJqww//cHSEC7gUeXpWwFFVlqwxIVUf7zl7FIHMPrfrgG+5HYaJh0HgdJ9Vwdfa TXAtN8ELf+m/yyzpvqvvEaDsZ7roLffoxHvdJJT+2UKYuzCnkT9TGTV7RX9xTkmR 3qUBhHeTfxRTfriQi6F8mZEbKeyJJd+2VKvHWdsZQevaQ8cMn6L6xSfnEzJhta6l PxO2fw2+S2o1vLte5hK7usWI/jQ63UDK51rSbevnihBJTIRvUyE5VaA+qaBYaymk auIAkmQDFbrPBTecAy57BPcK/6fVxUAJUpef6yWGX3FNIBfPd4E2tYkGlYpYIH5o Mfdkoc9kqUuyk9deyvumCUsfhjPFLay+a8oKmuz4GjePsRlHQX2MPm46L2qRgmTU UaOwYVwqd2Pvzeg/KhX5jrYGH1ytUt9i4kFm4KVTq5/t3darWmhfTy+c5LrWJsFG IJ42gIO6fg5UAwJFU8HgWu5nvfr/eWGf6vZxvn+/3CGf4WHLPS1QPMpP6tO1/SSU shdEqCoK0JFds6v/5d0Mou3ac6gwliD6qKhMExY1ybOwZaV4/LQ22HLypORiwYCT BC3Z3EsMDjMCx8bx7PYw8JijChOWZfoN/nxw10E8gISmAPbAjV4hgsYeXcmWy2K5 jvoItDQ/lQQu8QncYISDPXDfK6Xg33wvO5oiiywK0jVRvsTLsqg= =M6Ii -----END PGP SIGNATURE-----