-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 25 Nov 2025 12:05:10 +0100
Source: rlottie
Binary: librlottie-dev librlottie0-1 librlottie0-1-dbgsym
Architecture: amd64
Version: 0.1+dfsg-4+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) <buildd_amd64-x86-ubc-01@buildd.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 librlottie-dev - library for rendering vector based animations and art (developmen
 librlottie0-1 - library for rendering vector based animations and art
Closes: 1109341
Changes:
 rlottie (0.1+dfsg-4+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2025-0634 (Closes: #1109341)
     CVE-2025-53074
     CVE-2025-53075
     Most patches to fix these issues are already part of:
       Fix-crash-on-invalid-data.patch
     The remaining boundary check is left in:
       CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch
     For the sake of completeness, the whole upstream patch
     for these CVEs is added in:
       CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch.org
Checksums-Sha1:
 c35c90efabf0d77586a1149d088ffd3c2eea88fa 20852 librlottie-dev_0.1+dfsg-4+deb12u1_amd64.deb
 3bae69c69c5da53a334f22c94108f282127459a3 2558316 librlottie0-1-dbgsym_0.1+dfsg-4+deb12u1_amd64.deb
 7a872258ae63ad96f6b9b07238edc89f36e6fcfd 166496 librlottie0-1_0.1+dfsg-4+deb12u1_amd64.deb
 9bf54b4b4623c187ce25bb490ee45fd111efaa93 7571 rlottie_0.1+dfsg-4+deb12u1_amd64-buildd.buildinfo
Checksums-Sha256:
 9b2982f1b312fc3af444c8dfdaf68a48e1ba0b43352926bb6a1d084020f3282b 20852 librlottie-dev_0.1+dfsg-4+deb12u1_amd64.deb
 67bf2fe41043a2cb67661971d980f12cacd1839f4f71d22542ed8645ef403f11 2558316 librlottie0-1-dbgsym_0.1+dfsg-4+deb12u1_amd64.deb
 cbd157f45e22ea2e306cbff61b7cf7466db895423bfecefd96d10c4b9cac7cfd 166496 librlottie0-1_0.1+dfsg-4+deb12u1_amd64.deb
 ba01c27e22f9bf8510998845409e30b3a244f4c4c004d595da320a06e213d086 7571 rlottie_0.1+dfsg-4+deb12u1_amd64-buildd.buildinfo
Files:
 e32ac2c3de669a5299990c6b72de6fcf 20852 libdevel optional librlottie-dev_0.1+dfsg-4+deb12u1_amd64.deb
 2d54abd940891d4020631c8b1da26f90 2558316 debug optional librlottie0-1-dbgsym_0.1+dfsg-4+deb12u1_amd64.deb
 b9bbff41581efc2655b463989f101974 166496 libs optional librlottie0-1_0.1+dfsg-4+deb12u1_amd64.deb
 e0f0349b3d00d98b56748cb3b8b6abb7 7571 libs optional rlottie_0.1+dfsg-4+deb12u1_amd64-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=+Rdl
-----END PGP SIGNATURE-----