-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 21 Mar 2026 19:34:10 +0100
Source: p7zip
Binary: p7zip p7zip-dbgsym p7zip-full p7zip-full-dbgsym
Architecture: mipsel
Version: 16.02+really25.01+dfsg-0+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
 p7zip      - 7zr file archiver with high compression ratio
 p7zip-full - 7z and 7za file archivers with high compression ratio
Closes: 1111068
Changes:
 p7zip (16.02+really25.01+dfsg-0+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * Move codebase to 7-Zip (not p7zip) upstream 25.01, fixes:
     - CVE-2022-47069: heap-buffer-overflow vulnerability via the function
       NArchive::NZip::CInArchive::FindCd
     - CVE-2023-31102: Ppmd7.c allows an integer underflow and invalid read
       operation via a crafted 7Z archive.
     - CVE-2023-40481: SquashFS File Parsing Out-Of-Bounds Write RCE
     - CVE-2023-52168: heap-based buffer overflow in NTFS handler
     - CVE-2023-52169: out-of-bounds read in NTFS handler
     - CVE-2024-11612: CopyCoder Infinite Loop Denial-of-Service
     - CVE-2025-11001: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-11002: ZIP File Parsing Directory Traversal RCE
     - CVE-2025-53817: null pointer dereference in the Compound handler may
       lead to denial of service
     - CVE-2025-55188: does not always properly handle symbolic links
       during extraction. (Closes: #1111068)
   * Add NEWS entry and edit package description about the codebase change.
   * Drop assembly support, which would require asmc-linux, not present
     before trixie, or re-porting the ASM code to yasm as p7zip did.
   * Make 7-Zip behave like p7zip to avoid compatibility issues:
     - d/p/p7zip-compat-version-output.patch: mimic p7zip output
     - d/p/p7zip-compat-symlinks.patch: mimic symlinks handling
     - d/p/p7zip-compat-utf16.patch: mimic -[no-]utf16 options
   * Sync patches from 25.01+dfsg-1~deb13u1:
     - drop all old patches
     - drop new patches:
       - 000*-Use-c-flags-for-asmc.patch (no ASM)
       - 000*-Add-fpic-for-Asmc-options.patch (no ASM)
       - 000*-Use-system-locale-to-select-codepage-for-legacy-zip-.patch
         (behavior change)
   * Selectively import packaging from trixie, to avoid disruption in
     stable release:
     - Sync debian/copyright.
     - Import debian/rules, drop ASM rules, adapt p7zip.install and
       p7zip-full.install, add dependency to dh-exec for *.install
       rename support (as in the 7zip package).
     - Adjust d/p7zip-full.docs, drop d/p7zip-full.doc-base and
       d/p7zip-full.links (no more HTML documentation).
     - Import debian/man/ from trixie (except for 7zz.1), merge
       d/p7zip.1 to debian/man/ (same file), make 7zr.1 the primary
       file (as it's the only one in the p7zip base package / !full).
     - Import debian/test/ (except for 7zz tests).
     - Drop debian/format/ options.
   * Stub debian/watch (reuse 7zip tarball instead).
   * Enable Salsa CI.
   * Configure git-buildpackage for oldstable.
Checksums-Sha1:
 9c76b39b140f829200d4c0a5c94be665ab7bd55b 3160212 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 036ede43110be2f85c2af6e226d66a55f5f0e27d 13372852 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 5d4e2637374aa6032dec2e58c86633188188fffb 1391568 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 e6f5503133103305a607d2ea0febf2d3330be7f7 6876 p7zip_16.02+really25.01+dfsg-0+deb12u1_mipsel-buildd.buildinfo
 d03eea91c20124c2475f9d999025040a38b3f97c 460044 p7zip_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
Checksums-Sha256:
 f156eb7958f7a6070457b5238c4da9b5c300ce1218f364fa05026b91bf5d474d 3160212 p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 5ba8b2114b2970034cf64fd3ea8cfabfc8e398053cf79abb50dd38a2fa14ca15 13372852 p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 a468d33a2bd978d0a42b968f805b4e29285ac92f699701e0a6c2fb30f37e81fe 1391568 p7zip-full_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 c1f81e9fcef76b4e7701acd20ac68b5beccc31d29ae9de2e08411da22ff0fb88 6876 p7zip_16.02+really25.01+dfsg-0+deb12u1_mipsel-buildd.buildinfo
 8fffb72b34d79c4ce019cc0ce383348027bcc14e63911fb5562c04c5a2f69af7 460044 p7zip_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
Files:
 be07b5fc1d0ed967095826cfe18ffe61 3160212 debug optional p7zip-dbgsym_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 f43da5b668f52d0e04de03e381d4aae8 13372852 debug optional p7zip-full-dbgsym_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 653ffa27ab53124029da6d7dbb466284 1391568 utils optional p7zip-full_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb
 c9319483875ec8be87d91724ed3f21b2 6876 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_mipsel-buildd.buildinfo
 407df6f096ae8fb47baeb10fa1152fd6 460044 utils optional p7zip_16.02+really25.01+dfsg-0+deb12u1_mipsel.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEyYUQCyzsgu940OiVpwP2OD8jZaoFAmn3TrsACgkQpwP2OD8j
Zar49xAA2W5HqwEQux/2NfS+60InfQRlwJOymvCsnsbMGL5OICa7Cfr32Ou2tSdK
6rubGdxjXrdtn+XlJq0CRNaff5WSCjXkH+/seaD3OUnSQWYXqyZTHNpGmHrne3Xk
47wmyedLiaVKs6IRFgIsGj9BkluJkeumsus0OBwMtA8CAfyVgrVSYSFmSkk6vKVt
UrsiayFGoxz9C4VoaCuX39UVFVDqtZLz5hpror87z4UAEnD7Jm6IjPRPqjSJcQpo
mCj+kGe91909Fb2JPza5Cj4tOwHApJinrdZbGwRpAbY+lvWIixI+/KDmRW1UWCcA
AtqVWW59f2O1BEFnzPN3chU06Y4Eb0BfrNw/ZPfPM3hGd1sHCtUT21bUx6C+9Nvg
jaC5uLSb5eTvgqQ1tPzzSOORhb97HcwLGrCeOUp4oushD/4i5ch9ebcf0vbuSPj+
9qg1w99y4kcs27vcUWMC7YT4eqIwxwT+uB1ww3CoqItmJsDyefuefsuFtsM3lggA
ZqNfALrj0UokNdr529PFfz3jPmUj61YTNYLwNFEt7QR0Ak1N89AzIi/ZR1GfGjsV
Lh9JGAry8Cr/LOhLxhGx/7wnRiG1k6+87sNukfE5wAhI9W0JWA+xiUWRQyyW95px
ZJuOs6qJyzPeYgpOtCean8a6q/dFsTqquvj0ZfHEsbrugHWMSCA=
=uNiL
-----END PGP SIGNATURE-----