-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 21 Mar 2026 19:34:10 +0100
Source: p7zip
Binary: p7zip p7zip-dbgsym p7zip-full p7zip-full-dbgsym
Architecture: s390x
Version: 16.02+really25.01+dfsg-0+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: s390x Build Daemon (ziehrer) <buildd_s390x-ziehrer@buildd.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
 p7zip      - 7zr file archiver with high compression ratio
 p7zip-full - 7z and 7za file archivers with high compression ratio
Closes: 1111068
Changes:
 p7zip (16.02+really25.01+dfsg-0+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * Move codebase to 7-Zip (not p7zip) upstream 25.01, fixes:
     - CVE-2022-47069: heap-buffer-overflow vulnerability via the function
       NArchive::NZip::CInArchive::FindCd
     - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read
       operation via a crafted 7Z archive.
     - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE
     - CVE-2023-52168: heap-based buffer overflow in NTFS handler
     - CVE-2023-52169: out-of-bounds read in NTFS handler
     - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service
     - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-53817: null pointer dereference in the Compound handler may
       lead to denial of service
     - CVE-2025-55188: does not always properly handle symbolic links
       during extraction. (Closes: #1111068)
   * Add NEWS entry and edit package description about the codebase change.
   * Drop assembly support, which would require asmc-linux, not present
     before trixie, or re-porting the ASM code to yasm as p7zip did.
   * Make 7-Zip behave like p7zip to avoid compatibility issues:
     - d/p/p7zip-compat-version-output.patch: mimic p7zip output
     - d/p/p7zip-compat-symlinks.patch: mimic symlinks handling
     - d/p/p7zip-compat-utf16.patch: mimic -[no-]utf16 options
   * Sync patches from 25.01+dfsg-1~deb13u1:
     - drop all old patches
     - drop new patches:
       - 000*-Use-c-flags-for-asmc.patch (no ASM)
       - 000*-Add-fpic-for-Asmc-options.patch (no ASM)
       - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch
         (behavior change)
   * Selectively import packaging from trixie, to avoid disruption in
     stable release:
     - Sync debian/copyright.
     - Import debian/rules, drop ASM rules, adapt p7zip.install and
       p7zip-full.install, add dependency to dh-exec for *.install
       rename support (as in the 7zip package).
     - Adjust d/p7zip-full.docs, drop d/p7zip-full.doc-base and
       d/p7zip-full.links (no more HTML documentation).
     - Import debian/man/ from trixie (except for 7zz.1), merge
       d/p7zip.1 to debian/man/ (same file), make 7zr.1 the primary
       file (as it's the only one in the p7zip base package / !full).
     - Import debian/test/ (except for 7zz tests).
     - Drop debian/format/ options.
   * Stub debian/watch (reuse 7zip tarball instead).
   * Enable Salsa CI.
   * Configure git-buildpackage for oldstable.
Checksums-Sha1:
 69c13cce92afe48e159757498e8c67f7a1128b06 3131024 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 09210c9a9568ff5343e599382b3debf5ed5ce554 13254324 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 f3df8c27af2872afe6d60361dbdc0f376e1c5233 1282712 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 ca443aa6091fb64a20e97ecb0c4f38c8b2efd5a3 6976 p7zip_16.02+really25.01+dfsg-0+deb12u1_s390x-buildd.buildinfo
 266f5ef715218511b0f7010812035af6bfe5be35 409128 p7zip_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
Checksums-Sha256:
 973d537c98f17ba26607f52bd0a32f008228d311a0f3584ad12142fb15edac77 3131024 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 04f206850493ad9b4292e13210f0ea33f4dd04ffcd11a427d766c087a22a7ce7 13254324 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 63c98cf2e892b79d309b6364e7640f0c2ac14720fae22eb91d5109434d73b505 1282712 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 40646ead9b47656520f91e4d87bbe1052d7ebabf3b2a2cccb4c2c5417561cabf 6976 p7zip_16.02+really25.01+dfsg-0+deb12u1_s390x-buildd.buildinfo
 655a492cec8fc265de476049290b0f1fe28ff85b69cf7e4fe1f482e1a1603319 409128 p7zip_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
Files:
 c02bd6c5c8003595ed638f591f8ce3d6 3131024 debug optional p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 b681a2121017d59152ca0f4d4b3f5518 13254324 debug optional p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 44802d4c860ec16bd16d474a719be1ff 1282712 utils optional p7zip-full_16.02+really25.01+dfsg-0+deb12u1_s390x.deb
 fb943c1beb1271bc98a2f749586abc22 6976 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_s390x-buildd.buildinfo
 55dbaccb9410b8955106d9bf67307340 409128 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=gm/j
-----END PGP SIGNATURE-----