News for package discount

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 3.0 (quilt)
Source: discount
Binary: discount, libmarkdown2, libmarkdown2-dev
Architecture: any
Version: 2.2.2-1+deb9u1
Maintainer: Alessandro Ghedini <ghedo@debian.org>
Homepage: http://www.pell.portland.or.us/~orc/Code/discount/
Standards-Version: 3.9.8
Vcs-Browser: https://anonscm.debian.org/gitweb/?p=collab-maint/discount.git
Vcs-Git: https://anonscm.debian.org/git/collab-maint/discount.git
Build-Depends: debhelper (>= 9)
Package-List:
 discount deb text optional arch=any
 libmarkdown2 deb libs optional arch=any
 libmarkdown2-dev deb libdevel optional arch=any
Checksums-Sha1:
 a9a8dbb0e06f7fe09f534a76f5a0a9a32d0d5499 111571 discount_2.2.2.orig.tar.gz
 517eaa3c9fc904d42fcbd453e193164584b8c3ea 5772 discount_2.2.2-1+deb9u1.debian.tar.xz
Checksums-Sha256:
 94dabda30832b027e49eb26b4a0f36ae3a73247fc9bd066d7f83af8e50e29734 111571 discount_2.2.2.orig.tar.gz
 1beb1bf00d09a34063d8e3e98901985818926b251ed0146a7ee77318bfc2820c 5772 discount_2.2.2-1+deb9u1.debian.tar.xz
Files:
 c6556af37f3c9ff189f87fb95b9b5ab8 111571 discount_2.2.2.orig.tar.gz
 e92ca672192e161c8d97fedca4eb6423 5772 discount_2.2.2-1+deb9u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAluazbZfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD
RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp
YW4ub3JnAAoJENmtFLlRO1Hk3uUQAJCLry9JqqdJ0rMc/43JjxhGr5tZOKHjsWQO
pW4HkNnOIoU/rdmIEvlq2hx8+yw953f1UexnUWE9edSz2EqiH/xWd2nL5v1eV85t
7B53kp56/NH8pbdbidQJ3Ji0Twos2QbSe5oqoMugf4N01UdTF5dih015heM0zvxD
xtJABi7SsczBfihthH0bA4+es2UT2KED8zchOeK7fKjRaiQTxV8vRe0MUPxOAfYd
dxXwxh/+pTDKLAbdFQGUj/nFj7NXEoSO8Y+Xsq4DG7vcuMUwHuRTPuEiqKMfFjth
r1PeJqHYdoZFF/3bgJxjwpJ0q7EYRUm9M5PfM4o7u0Gegl8hsWElqrAVRceCpshL
yWIfAgNCfDYKIZKR0Sh8huGgnNawl4tfhMObOGz9KVHNi2oEUv1bNl7U6kIj5AFF
SJJoyBFd4NhD/mZjVDkgyCsj7sHOia3VZZdoPUdH/KAtOvH43jIc2/azXWALL8z+
86MqgxinCu34sN7mdBMXqtGcbhswE2gaB7ffDg52L0jrvBh/dYtq72OoHj6a39ff
4eET6y293DW9bzEuBtk9eU91rhf0iU7JKh2Ow5seO1CXc1PCfNsCu0jQMC7HvmXR
Yil+ktuYzLjCUXf9Wt2QKAi1/PD7pjgg8pXAooGT7JPv4EyO5ulFx9UnQ+HMwrmo
lUVlkAll
=A+W7
-----END PGP SIGNATURE-----

<span id="changes">Changes:</span>
discount (2.2.2-1+deb9u1) stretch-security; urgency=high

  * Non-maintainer upload.
  * Fix CVE-2018-11468, CVE-2018-11503, CVE-2018-11504 and CVE-2018-12495.
    Several heap-based buffer over-reads were found in discount that allowed
    remote attackers to cause a denial-of-service via specially crafted files.

 -- Markus Koschany <apo@debian.org>  Thu, 13 Sep 2018 22:43:24 +0200