-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 21 Mar 2026 19:34:10 +0100
Source: p7zip
Binary: p7zip p7zip-dbgsym p7zip-full p7zip-full-dbgsym
Architecture: armel
Version: 16.02+really25.01+dfsg-0+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-05) <buildd_arm64-arm-ubc-05@buildd.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
 p7zip      - 7zr file archiver with high compression ratio
 p7zip-full - 7z and 7za file archivers with high compression ratio
Closes: 1111068
Changes:
 p7zip (16.02+really25.01+dfsg-0+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * Move codebase to 7-Zip (not p7zip) upstream 25.01, fixes:
     - CVE-2022-47069: heap-buffer-overflow vulnerability via the function
       NArchive::NZip::CInArchive::FindCd
     - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read
       operation via a crafted 7Z archive.
     - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE
     - CVE-2023-52168: heap-based buffer overflow in NTFS handler
     - CVE-2023-52169: out-of-bounds read in NTFS handler
     - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service
     - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-53817: null pointer dereference in the Compound handler may
       lead to denial of service
     - CVE-2025-55188: does not always properly handle symbolic links
       during extraction. (Closes: #1111068)
   * Add NEWS entry and edit package description about the codebase change.
   * Drop assembly support, which would require asmc-linux, not present
     before trixie, or re-porting the ASM code to yasm as p7zip did.
   * Make 7-Zip behave like p7zip to avoid compatibility issues:
     - d/p/p7zip-compat-version-output.patch: mimic p7zip output
     - d/p/p7zip-compat-symlinks.patch: mimic symlinks handling
     - d/p/p7zip-compat-utf16.patch: mimic -[no-]utf16 options
   * Sync patches from 25.01+dfsg-1~deb13u1:
     - drop all old patches
     - drop new patches:
       - 000*-Use-c-flags-for-asmc.patch (no ASM)
       - 000*-Add-fpic-for-Asmc-options.patch (no ASM)
       - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch
         (behavior change)
   * Selectively import packaging from trixie, to avoid disruption in
     stable release:
     - Sync debian/copyright.
     - Import debian/rules, drop ASM rules, adapt p7zip.install and
       p7zip-full.install, add dependency to dh-exec for *.install
       rename support (as in the 7zip package).
     - Adjust d/p7zip-full.docs, drop d/p7zip-full.doc-base and
       d/p7zip-full.links (no more HTML documentation).
     - Import debian/man/ from trixie (except for 7zz.1), merge
       d/p7zip.1 to debian/man/ (same file), make 7zr.1 the primary
       file (as it's the only one in the p7zip base package / !full).
     - Import debian/test/ (except for 7zz tests).
     - Drop debian/format/ options.
   * Stub debian/watch (reuse 7zip tarball instead).
   * Enable Salsa CI.
   * Configure git-buildpackage for oldstable.
Checksums-Sha1:
 7b9020d01326ddb7303dae676bab4c548819ca63 3103780 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 9b572fbd549ea0ae22bef3bd8236463674b7024e 13121956 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 fcfb729e9ca30a922b9e4d61a5efd18d588b2ffd 1154668 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 5d6fe6d64588577e60ee76e2cc334045453d6f02 6930 p7zip_16.02+really25.01+dfsg-0+deb12u1_armel-buildd.buildinfo
 3e00f5aa689647fbe4f8a1dd28719f85f9d8fd26 363064 p7zip_16.02+really25.01+dfsg-0+deb12u1_armel.deb
Checksums-Sha256:
 5def7beb77db934853391a3fd7e7fe857268c091db8be02cca6696d2f3d78744 3103780 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 108832c18687add1c3950f601b9c4ebdfae543534f1a330c86593e4f3343d639 13121956 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 97ff668dd7f4d53b1aa6e67672c60770099945e6610f3df3ae9f03cd58e05479 1154668 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 861db208a6cce04dd39b2e00e8a6ba053e3efcff1c99edeb8bb5e1e2fee26b02 6930 p7zip_16.02+really25.01+dfsg-0+deb12u1_armel-buildd.buildinfo
 0466b6a33a7c1c2d71b3c1038156ad7b3a746069df0e79049a720bd3b0d03d64 363064 p7zip_16.02+really25.01+dfsg-0+deb12u1_armel.deb
Files:
 77cbcd97d3f1b4df8b94debfbfd9192e 3103780 debug optional p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 92b001a58dcfa3614a6b21828b7c5c9e 13121956 debug optional p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 a14bc7fec3c333bc55623e372d502f40 1154668 utils optional p7zip-full_16.02+really25.01+dfsg-0+deb12u1_armel.deb
 61ebd60fd0147aa1f8f7ba10b115673d 6930 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_armel-buildd.buildinfo
 7d7353c405e1be349404de781e9db924 363064 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_armel.deb

-----BEGIN PGP SIGNATURE-----
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=+g/X
-----END PGP SIGNATURE-----