-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 26 Aug 2021 21:03:02 +0200
Source: gthumb
Binary: gthumb gthumb-dbgsym gthumb-dev
Architecture: armhf
Version: 3:3.6.2-4+deb10u1
Distribution: buster
Urgency: medium
Maintainer: armhf Build Daemon (antheil) <buildd_armhf-antheil@buildd.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 gthumb     - image viewer and browser
 gthumb-dev - image viewer and browser - development files
Closes: 948197
Changes:
 gthumb (3:3.6.2-4+deb10u1) buster; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2019-20326 (Closes: #948197)
     A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg()
     in extensions/cairo_io/cairo-image-surface-jpeg.c allows attackers to
     cause a crash and potentially execute arbitrary code via a crafted JPEG
     file.
   * additional fix in case orientation swaps width and height
Checksums-Sha1:
 c2221a2e41be035c9f5621a03dbfb27b0b478a31 4498912 gthumb-dbgsym_3.6.2-4+deb10u1_armhf.deb
 2758124243667dae26c601053c153cd6f2059e46 574244 gthumb-dev_3.6.2-4+deb10u1_armhf.deb
 ee93fc5d183cc37da6166bb5e27dce85be8e3db9 21348 gthumb_3.6.2-4+deb10u1_armhf-buildd.buildinfo
 d36b67b86940bfd103cffbe4ce0827fc312fd87b 780720 gthumb_3.6.2-4+deb10u1_armhf.deb
Checksums-Sha256:
 8812b55c935bb13aa24113e2e7fe684605c5af96be15502ca9f976c364bcd2f7 4498912 gthumb-dbgsym_3.6.2-4+deb10u1_armhf.deb
 e16753e82e8914d0cd82ac08ec83d58c11d2004e4421af98d909778263f333db 574244 gthumb-dev_3.6.2-4+deb10u1_armhf.deb
 946444ff8191161be31fed3c11096d3a2254565d368f3ac3dfbdcccff6ab2b05 21348 gthumb_3.6.2-4+deb10u1_armhf-buildd.buildinfo
 082fc4e3bbd7619b557c2e2218e9b101b7aa17120dbab8d68c5fe051ffcdd917 780720 gthumb_3.6.2-4+deb10u1_armhf.deb
Files:
 3cd691197cded3957946dd6d4ac152f4 4498912 debug optional gthumb-dbgsym_3.6.2-4+deb10u1_armhf.deb
 bf43c62a86d3caba8b18d88299d62194 574244 devel optional gthumb-dev_3.6.2-4+deb10u1_armhf.deb
 3eca390724b0b052a6c9a0c319d6a6e9 21348 gnome optional gthumb_3.6.2-4+deb10u1_armhf-buildd.buildinfo
 9053f364832f022e9217f15954bba3e3 780720 gnome optional gthumb_3.6.2-4+deb10u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=17o5
-----END PGP SIGNATURE-----