-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 21 Mar 2026 19:34:10 +0100
Source: p7zip
Binary: p7zip p7zip-dbgsym p7zip-full p7zip-full-dbgsym
Architecture: arm64
Version: 16.02+really25.01+dfsg-0+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: arm64 Build Daemon (arm-conova-03) <buildd_arm64-arm-conova-03@buildd.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
 p7zip      - 7zr file archiver with high compression ratio
 p7zip-full - 7z and 7za file archivers with high compression ratio
Closes: 1111068
Changes:
 p7zip (16.02+really25.01+dfsg-0+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * Move codebase to 7-Zip (not p7zip) upstream 25.01, fixes:
     - CVE-2022-47069: heap-buffer-overflow vulnerability via the function
       NArchive::NZip::CInArchive::FindCd
     - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read
       operation via a crafted 7Z archive.
     - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE
     - CVE-2023-52168: heap-based buffer overflow in NTFS handler
     - CVE-2023-52169: out-of-bounds read in NTFS handler
     - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service
     - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-53817: null pointer dereference in the Compound handler may
       lead to denial of service
     - CVE-2025-55188: does not always properly handle symbolic links
       during extraction. (Closes: #1111068)
   * Add NEWS entry and edit package description about the codebase change.
   * Drop assembly support, which would require asmc-linux, not present
     before trixie, or re-porting the ASM code to yasm as p7zip did.
   * Make 7-Zip behave like p7zip to avoid compatibility issues:
     - d/p/p7zip-compat-version-output.patch: mimic p7zip output
     - d/p/p7zip-compat-symlinks.patch: mimic symlinks handling
     - d/p/p7zip-compat-utf16.patch: mimic -[no-]utf16 options
   * Sync patches from 25.01+dfsg-1~deb13u1:
     - drop all old patches
     - drop new patches:
       - 000*-Use-c-flags-for-asmc.patch (no ASM)
       - 000*-Add-fpic-for-Asmc-options.patch (no ASM)
       - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch
         (behavior change)
   * Selectively import packaging from trixie, to avoid disruption in
     stable release:
     - Sync debian/copyright.
     - Import debian/rules, drop ASM rules, adapt p7zip.install and
       p7zip-full.install, add dependency to dh-exec for *.install
       rename support (as in the 7zip package).
     - Adjust d/p7zip-full.docs, drop d/p7zip-full.doc-base and
       d/p7zip-full.links (no more HTML documentation).
     - Import debian/man/ from trixie (except for 7zz.1), merge
       d/p7zip.1 to debian/man/ (same file), make 7zr.1 the primary
       file (as it's the only one in the p7zip base package / !full).
     - Import debian/test/ (except for 7zz tests).
     - Drop debian/format/ options.
   * Stub debian/watch (reuse 7zip tarball instead).
   * Enable Salsa CI.
   * Configure git-buildpackage for oldstable.
Checksums-Sha1:
 f5c220acacf109e43b8e46241b331b77101c4526 3129816 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 cd5d7629f77f56fc4e86edd6ff5b455b28e64eb1 14671656 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 63efa3c76698ee67a9b6b7eb7a4957c69d0f5f20 1277712 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 1c96cc9d0f5fa6be0fa7c14469d0ac225b732a06 7104 p7zip_16.02+really25.01+dfsg-0+deb12u1_arm64-buildd.buildinfo
 d233bc0ad587cca6bfb2ee4396edeb18a2d1ec0a 400784 p7zip_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
Checksums-Sha256:
 8b0b6c103786711455edee4003c2aa5cb33180c5bb82396ec35e0c661ad3e968 3129816 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 7600ab247721c761c5e909fdb198f76c3859c28a03b5bd16cf85d580c19f6986 14671656 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 2b0d2c3a7edcb185e8490518cd2e01c03699e516e830969b659a7a7bd237c656 1277712 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 e738fceab349328efb0498534d4e642ab7b2b45723b3c09ee929dbd190da7275 7104 p7zip_16.02+really25.01+dfsg-0+deb12u1_arm64-buildd.buildinfo
 c060ab5bd0c46f43d106d0de1b40118b6e2b8c9890cd49ff32759d6a609a555b 400784 p7zip_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
Files:
 c603ed9e1dd2d1ae4f3d29d46c1b3b3c 3129816 debug optional p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 e1a9d17597a274f40cbab8bffb43a347 14671656 debug optional p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 270bb8222c4bf3364bd43bcfaee1f509 1277712 utils optional p7zip-full_16.02+really25.01+dfsg-0+deb12u1_arm64.deb
 0a41719285eb6cc28c72f749d08041a5 7104 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_arm64-buildd.buildinfo
 19804506135de708e014ae0c6647e0bc 400784 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_arm64.deb

-----BEGIN PGP SIGNATURE-----
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=Q5OL
-----END PGP SIGNATURE-----