-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 20 Nov 2025 10:45:05 +0100 Source: cups-filters Architecture: source Version: 1.28.17-3+deb12u2 Distribution: bookworm Urgency: high Maintainer: Debian Printing Team Changed-By: Thorsten Alteholz Closes: 1120698 1120704 Changes: cups-filters (1.28.17-3+deb12u2) bookworm; urgency=high . * CVE-2025-64503 fix an out of bounds write vulnerability when processing crafted PDF files containing a large 'Mediabox' value. (Closes: #1120698) . * CVE-2025-57812 fix an out of bounds read/write vulnerability in the processing of TIFF image files. (Closes: #1120704) . * CVE-2025-64524 fix infinite loop with crafted input raster file, that resuls into a heap buffer overflow Checksums-Sha1: 6b7e291208b74edb1c0cfe4834be5e50baacd4a3 3013 cups-filters_1.28.17-3+deb12u2.dsc 916cc1ebc2533a745b8a04233700d559ab91ed87 1511993 cups-filters_1.28.17.orig.tar.gz 846842a33aeb4eba978e3c1fb4603d18d372bee2 89380 cups-filters_1.28.17-3+deb12u2.debian.tar.xz c460eeb28dff3959325a56a881573e2fdff84ade 15077 cups-filters_1.28.17-3+deb12u2_amd64.buildinfo Checksums-Sha256: 60fd4a7520012927c3e2427275e88bce2dfbaa05845193cee25a1add99d43010 3013 cups-filters_1.28.17-3+deb12u2.dsc ade6e4327e7eba1646881aaa4ca82a0df5d44e3b3b16326a5d3f04e975ab595c 1511993 cups-filters_1.28.17.orig.tar.gz 41c186ff7df6f575dd8b7ea23dbf62cb19983724fc39ea7440f6dca8339ac5dd 89380 cups-filters_1.28.17-3+deb12u2.debian.tar.xz 507544251115206b8c2d19fd810697a3be75764f6bacba74ab28c734320092c9 15077 cups-filters_1.28.17-3+deb12u2_amd64.buildinfo Files: ac04e78585e2326ba53e7d985a5e11b4 3013 net optional cups-filters_1.28.17-3+deb12u2.dsc 389aa99780c9b5ac012fc4b2d29e5cba 1511993 net optional cups-filters_1.28.17.orig.tar.gz 05a46bdfefafb53b60d3be5bf888b3e3 89380 net optional cups-filters_1.28.17-3+deb12u2.debian.tar.xz d42622f4fc7c90d97919384fc5a18224 15077 net optional cups-filters_1.28.17-3+deb12u2_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQKnBAEBCgCRFiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAmkfNn9fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcTHGRlYmlhbkBh bHRlaG9sei5kZQAKCRCW/KwNOHtYRwARD/9GfTMMDXzp6bO5cEkUXpGMbixyC6QQ F1gfEPN5xni6u8G41sY4OkmYPN8+uLfedSVSbz1Vtsds+D8wV4QUxOuNnGy3G80S 51g1J37mVFgLVU3zBbocJSxl7vlE5a1gbeZpDDQv95cHBoNY5X8AGzXMpIm0GCJL wUIOW66Hmg4laGG0FAzVqjNWbvpMzyzt+Yg54YrfZRTCC+NjaDJ6DWe3U7gE/1qG mBFNdnen1MNE5PgLJkGD8Wo26jPE8oB7hZM03Nm4e6vqEjrNZy9t6DeczR1oZ/W8 l2wzZpCfccG+cYHdxsSRddhRSeAnMt4I1obkpGo3U7BCvlnmkUdD5kGtCRqrrk31 a0tyBU/i2sfy39r3d0hYGm4CHBfJEh+mGkJ7wLDfEJnkrlpeLElgGbzkaO0eUO4k rCMozESjYuFdfKDN8nCm7K5YUeaSOYNePisYmwPzBxvvy1ZHkzAhJn/SyuQ8lhOi XLSJb+v9NwcMVC6dmarZ3NdJH7mHX16A/wM/SwWtK2DXfSJXNshhZEWHf0QX3rdP X4sBJs/+snyESe8y5+HUqiL47Vi19BUnyo4b/T3VoWZkVas2zi7ssAsk0Cj9g2Tv m+24y9lrygu20N+oPva3HFdyLdT8Rf3YL1aph1eUsXGEQSPpR70DKvwfhjU/snlJ Ls56mxCGJ1bETA== =VgSQ -----END PGP SIGNATURE-----