-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 25 Nov 2025 12:05:10 +0100
Source: rlottie
Binary: librlottie-dev librlottie0-1 librlottie0-1-dbgsym
Architecture: arm64
Version: 0.1+dfsg-4.2+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-02) <buildd_arm64-arm-ubc-02@buildd.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 librlottie-dev - library for rendering vector based animations and art (developmen
 librlottie0-1 - library for rendering vector based animations and art
Closes: 1109341
Changes:
 rlottie (0.1+dfsg-4.2+deb13u1) trixie; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2025-0634 (Closes: #1109341)
     CVE-2025-53074
     CVE-2025-53075
     Most patches to fix these issues are already part of:
       Fix-crash-on-invalid-data.patch
     The remaining boundary check is left in:
       CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch
     For the sake of completeness, the whole upstream patch
     for these CVEs is added in:
       CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch.org
Checksums-Sha1:
 ce5c7f4b89c352e8767aceebee70cdc6c5c55f15 21000 librlottie-dev_0.1+dfsg-4.2+deb13u1_arm64.deb
 54946e00b399db4d42f5d5d1fcbdd754da5e1dd6 2010860 librlottie0-1-dbgsym_0.1+dfsg-4.2+deb13u1_arm64.deb
 bc6f5b07850ba6ad085e2d947fc25aa1c7a4b62a 107372 librlottie0-1_0.1+dfsg-4.2+deb13u1_arm64.deb
 feff36e108eb021364bb3db3174afc12dcab39e5 7360 rlottie_0.1+dfsg-4.2+deb13u1_arm64-buildd.buildinfo
Checksums-Sha256:
 cf691fa7feada9c6748e0551cb18264752389ae187b82e3e8a1921b13c179d4a 21000 librlottie-dev_0.1+dfsg-4.2+deb13u1_arm64.deb
 605993c19a286c23c27f0e6995d7c3456676631edfb3d37602a668477f01b831 2010860 librlottie0-1-dbgsym_0.1+dfsg-4.2+deb13u1_arm64.deb
 8a05ba2281d8dea838b8c99adea932e5beed7ca1d374f6a1e66b5ee4353faae1 107372 librlottie0-1_0.1+dfsg-4.2+deb13u1_arm64.deb
 dc104be8d81588962789515ff9386acd6b95eb942f61914a9aaee6d84806d38b 7360 rlottie_0.1+dfsg-4.2+deb13u1_arm64-buildd.buildinfo
Files:
 8cc0dd65fb14596ba3f3b03e25431639 21000 libdevel optional librlottie-dev_0.1+dfsg-4.2+deb13u1_arm64.deb
 cc9f092e8b233d914aedc21d6c04dbe0 2010860 debug optional librlottie0-1-dbgsym_0.1+dfsg-4.2+deb13u1_arm64.deb
 8d74ec6c6f082324bfd117aed3d83f90 107372 libs optional librlottie0-1_0.1+dfsg-4.2+deb13u1_arm64.deb
 a671f58e295431cdc751871e782187eb 7360 libs optional rlottie_0.1+dfsg-4.2+deb13u1_arm64-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=mZ1h
-----END PGP SIGNATURE-----