-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 25 Nov 2025 12:05:10 +0100
Source: rlottie
Binary: librlottie-dev librlottie0-1 librlottie0-1-dbgsym
Architecture: amd64
Version: 0.1+dfsg-4.2+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 librlottie-dev - library for rendering vector based animations and art (developmen
 librlottie0-1 - library for rendering vector based animations and art
Closes: 1109341
Changes:
 rlottie (0.1+dfsg-4.2+deb13u1) trixie; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2025-0634 (Closes: #1109341)
     CVE-2025-53074
     CVE-2025-53075
     Most patches to fix these issues are already part of:
       Fix-crash-on-invalid-data.patch
     The remaining boundary check is left in:
       CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch
     For the sake of completeness, the whole upstream patch
     for these CVEs is added in:
       CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch.org
Checksums-Sha1:
 685278f5501295e6c3572a1c028b76856964bdad 21004 librlottie-dev_0.1+dfsg-4.2+deb13u1_amd64.deb
 b6051323313d865debffe8215bc33a79f174e4b2 2057248 librlottie0-1-dbgsym_0.1+dfsg-4.2+deb13u1_amd64.deb
 715ccbc5f24f85f8c5ceb2777ee64037f6d7ccde 116860 librlottie0-1_0.1+dfsg-4.2+deb13u1_amd64.deb
 a437df5b4964c516f329b0868f4a5695eba5bf7e 7373 rlottie_0.1+dfsg-4.2+deb13u1_amd64-buildd.buildinfo
Checksums-Sha256:
 33551c104352ad4be9aeaff7048fafe25041b837483bde5d48be1eabe48a4ee3 21004 librlottie-dev_0.1+dfsg-4.2+deb13u1_amd64.deb
 a36e3ccead87609ddaaa06a4252b93ecec74153455259e754e18800b9644e3d4 2057248 librlottie0-1-dbgsym_0.1+dfsg-4.2+deb13u1_amd64.deb
 2630f5042c902fc22127a9dbe9fe7defaf6a14cb610a5e62d719092fa7b9bcf6 116860 librlottie0-1_0.1+dfsg-4.2+deb13u1_amd64.deb
 28dd02cc6cf087c7a3cbc50682404d3600378f544d116421290392dd06939d72 7373 rlottie_0.1+dfsg-4.2+deb13u1_amd64-buildd.buildinfo
Files:
 a9b49a122ae2d8ed4d5e61020c02cc8a 21004 libdevel optional librlottie-dev_0.1+dfsg-4.2+deb13u1_amd64.deb
 58cf222147c4c90295fb052c39890e72 2057248 debug optional librlottie0-1-dbgsym_0.1+dfsg-4.2+deb13u1_amd64.deb
 3a206caef4449fc546e5d1b462871097 116860 libs optional librlottie0-1_0.1+dfsg-4.2+deb13u1_amd64.deb
 d0c001bf6f06e1122f3109872df0b9f9 7373 libs optional rlottie_0.1+dfsg-4.2+deb13u1_amd64-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=4jT0
-----END PGP SIGNATURE-----