-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 21 Mar 2026 19:34:09 +0100 Source: 7zip Binary: 7zip 7zip-dbgsym Architecture: amd64 Version: 22.01+really25.01+dfsg-0+deb12u1 Distribution: bookworm Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-csail-01) Changed-By: Sylvain Beucler Description: 7zip - 7-Zip file archiver with a high compression ratio Closes: 1111068 Changes: 7zip (22.01+really25.01+dfsg-0+deb12u1) bookworm; urgency=high . * Non-maintainer upload by the LTS Security Team. * Bump to upstream 25.01, fixes: - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read operation via a crafted 7Z archive. - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE - CVE-2025-53817: null pointer dereference in the Compound handler may lead to denial of service - CVE-2025-55188: does not always properly handle symbolic links during extraction. (Closes: #1111068) * Sync patches from 25.01+dfsg-1~deb13u1: - keep old patches: - 000*-Remove-unwanted-hack-for-object-files.patch (no 7z.so) - drop new patches: - 000*-Use-c-flags-for-asmc.patch (no ASM) - 000*-Add-fpic-for-Asmc-options.patch (no ASM) - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch (behavior change) * No changes to packaging to avoid disruption in stable release (no split package, no ASM support, no files in /usr/lib/7z/, etc.) * Enable Salsa CI. * Configure git-buildpackage for oldstable. Checksums-Sha1: c2d345fd4792a525d06de233cb7b836542c80539 7360180 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_amd64.deb b589d9fa4bc9d83cc3cd2b1bf88e8e39f04fad97 6354 7zip_22.01+really25.01+dfsg-0+deb12u1_amd64-buildd.buildinfo 1ad71dbca98d0f84e7127afed6e38ea13781d802 1020172 7zip_22.01+really25.01+dfsg-0+deb12u1_amd64.deb Checksums-Sha256: abf395aa9e4ad91740d2ee18f6bf1fe87a60f338422d922d7b066a43b84956b9 7360180 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_amd64.deb 4359d5946dd0e0dcca2b731950a080103896596231e0014b5275e46163eac8aa 6354 7zip_22.01+really25.01+dfsg-0+deb12u1_amd64-buildd.buildinfo 3d48ce6d28d383c9dd32267372377fe66a54c790f38e193fd6fa43af6292e690 1020172 7zip_22.01+really25.01+dfsg-0+deb12u1_amd64.deb Files: 38e58a5659b8b4d1654af02a685005d8 7360180 debug optional 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_amd64.deb 1cededa32b8026ab3a895ede2e4cb97e 6354 utils optional 7zip_22.01+really25.01+dfsg-0+deb12u1_amd64-buildd.buildinfo 076cbe12b2fc31a0fcecae2af6ef1f44 1020172 utils optional 7zip_22.01+really25.01+dfsg-0+deb12u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEBDWXQb2umOtH4DRpYg9P9sm2dfEFAmn3STYACgkQYg9P9sm2 dfFvqA//UN2T69ISc+1Zm9ge42AurE7LGiybJMDylrk8LOl5DdSI2XdlgQlt+XU2 3evDCbnzHI/Ss1efeCF2kAEJvdnBAyTPz1OgihT4PYC5oKu6SMrT+8igLFIZ9B/c x+riZ5DHM13qLDzti2Yln2iSxQlUz74QN6yYdOcGM+LDwUbPKNCwt6GjWSFRX3Mh 6f+ej9kBY2MWvR3azI8eEnDIO8DhcS/2vnmvZw8Hp3DSK7FhTNAXdC20u7Dq1wr8 GVK6e4lKw9cu0l+VMKhrMebJ6XKszbI/vn0w/xjczOCZbT058+rLoKNfRK8XPtAu M1TwfAdRY2aGQLs/QNH5UZnL0duNA9W3wqHqlHXkMeSUTO0B8BObZYbxB1CRW289 D2RI4ChDqLoimuVicwCN3Fe9/6r7YMTviC9wyOfKm7afdxVfaDcFqyH/qzG/llLf /WoXH8xKdhZMPAxXJmiBODW71koyQhMXRJ+t1KKRsLgSHJTWLaWDXxB4+GfWxEOV WaGWgIiWI7IiKv5MWVzjTUsAGpDmTx4WWJU8sg+GvkHuPdnkZ5PlTX9rG9JstlM2 hqwhhEBapBIf5B5xN7Ag+Irwi2O+mP95lhffLrbEkqN8Cez5qa5lRc1KuUxNvhC5 bALjRmQMJJEWHczWR39OU4tjciUHw3GzNaDVSVWir0oV1IjWz2I= =Xx6H -----END PGP SIGNATURE-----