-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 21 Mar 2026 19:34:09 +0100 Source: 7zip Binary: 7zip 7zip-dbgsym Architecture: s390x Version: 22.01+really25.01+dfsg-0+deb12u1 Distribution: bookworm Urgency: high Maintainer: s390x Build Daemon (zandonai) Changed-By: Sylvain Beucler Description: 7zip - 7-Zip file archiver with a high compression ratio Closes: 1111068 Changes: 7zip (22.01+really25.01+dfsg-0+deb12u1) bookworm; urgency=high . * Non-maintainer upload by the LTS Security Team. * Bump to upstream 25.01, fixes: - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read operation via a crafted 7Z archive. - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE - CVE-2025-53817: null pointer dereference in the Compound handler may lead to denial of service - CVE-2025-55188: does not always properly handle symbolic links during extraction. (Closes: #1111068) * Sync patches from 25.01+dfsg-1~deb13u1: - keep old patches: - 000*-Remove-unwanted-hack-for-object-files.patch (no 7z.so) - drop new patches: - 000*-Use-c-flags-for-asmc.patch (no ASM) - 000*-Add-fpic-for-Asmc-options.patch (no ASM) - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch (behavior change) * No changes to packaging to avoid disruption in stable release (no split package, no ASM support, no files in /usr/lib/7z/, etc.) * Enable Salsa CI. * Configure git-buildpackage for oldstable. Checksums-Sha1: 01e6dd5031b0f05fd9ac9f1f82d10e578dd2afb3 7094640 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_s390x.deb 91cc6fc36ba2f0b6718c8dd56d9ce64ad755a93c 6222 7zip_22.01+really25.01+dfsg-0+deb12u1_s390x-buildd.buildinfo 823be51b83f4366061e00d0435211ab163fbfe9f 921476 7zip_22.01+really25.01+dfsg-0+deb12u1_s390x.deb Checksums-Sha256: 1766192bc198ea617110a87dcdd4b8efe6171997af62e006b293907c60366cbc 7094640 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_s390x.deb ac60befccc8d1e5fe3866493cad9fc8c155b2ce536ced9aada8c39e396695a6d 6222 7zip_22.01+really25.01+dfsg-0+deb12u1_s390x-buildd.buildinfo d811b5ef537ede2a9d18ff2f50f3ee18c34988a62772fdb97f1923628dae1706 921476 7zip_22.01+really25.01+dfsg-0+deb12u1_s390x.deb Files: ad8c5c7178e9c4c2cd3c52b3f1e34b02 7094640 debug optional 7zip-dbgsym_22.01+really25.01+dfsg-0+deb12u1_s390x.deb 2a76039373660b6ba5174d622832c7e7 6222 utils optional 7zip_22.01+really25.01+dfsg-0+deb12u1_s390x-buildd.buildinfo 7ecbf8a85432713f53d99caf465da62b 921476 utils optional 7zip_22.01+really25.01+dfsg-0+deb12u1_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEENly2ANlpa4eeqnluvVOPI7pYNpgFAmn3SOkACgkQvVOPI7pY Nph4lxAAt7gRPolnixd8GlIkfk+ej3DOg5A7483ErveFC7Agho0DjsYyWNj+Ganc 9jGdRdZDL0/JPtSyfM3trR3dZfkuNJsMTSCqTh7XKsIB7mHFG1S4+SXidq7MGZYh 4+mBpaTHMMZPN265CsEUlrAgs+0n0MJjuyLrro6qBd4WDP9wJQ1LZhrZGubPcKwH 1ltVUDRn70LQkzFjioFfvbX0idQfls/O8ZUJHGVfU1jOg1EeExf+RDQRL0S0gMUH DN5X87v+t0e+vu1Z4I8IzZGvvXwCXm5SxBgmihwEEsVGOLCgrgJ0vh8biQ1OU2o0 Xh4CkV8WcsqIHF0PNMS0Y9kNuMk/bzXzxoGX29RLPVh1jca3i5y2J1DJccEWZoWQ +59+SW7cot6f615cd95kDEF1V55b7iOCSqf3pDYGScfNN0YROmkm67MVk9RJIO+W ZYspXoB+IQBIbmZAzza/ISHlcz9dyS1+jLEnA0bVoQHnx7J2r0w9P4ICO02UuqBt A3PjfNJiW6/01z7vuXpGxzjeji6oHoqaq/QB3LSktmUcoRh5hF0rnwQ0NYTfxg7W HkJCZEbNXgiJsXtfBg8ylgxPPwfu+XO//PH5EcdSx1+nek+Ph3yDi+X1qqJxobO9 raHh7XfCxC8mP6MN7l0Ngy5Jxl/qC87E+yPKIEtcExaPu4V89yo= =mCDM -----END PGP SIGNATURE-----