-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 26 Aug 2021 21:03:02 +0200 Source: gthumb Binary: gthumb gthumb-dbgsym gthumb-dev Architecture: ppc64el Version: 3:3.6.2-4+deb10u1 Distribution: buster Urgency: medium Maintainer: ppc64el Build Daemon (ppc64el-osuosl-01) Changed-By: Thorsten Alteholz Description: gthumb - image viewer and browser gthumb-dev - image viewer and browser - development files Closes: 948197 Changes: gthumb (3:3.6.2-4+deb10u1) buster; urgency=medium . * Non-maintainer upload by the LTS Team. * CVE-2019-20326 (Closes: #948197) A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c allows attackers to cause a crash and potentially execute arbitrary code via a crafted JPEG file. * additional fix in case orientation swaps width and height Checksums-Sha1: 3d44e3a49bf8950b93b1cd45f64dc281f76d2308 4616172 gthumb-dbgsym_3.6.2-4+deb10u1_ppc64el.deb cc3aa9a4c8b2fd33b88f537a71ef37f7e962c71b 672484 gthumb-dev_3.6.2-4+deb10u1_ppc64el.deb c5df38e0c26ad747ebeab3ff5ebeadf7be12dc1e 21284 gthumb_3.6.2-4+deb10u1_ppc64el-buildd.buildinfo df128e7ab1dfaf06dc860339f0be439e37595231 971896 gthumb_3.6.2-4+deb10u1_ppc64el.deb Checksums-Sha256: a68386cf4a7078933faa69d5572c652b52536ccf57310e9e7f46d665599e5eb1 4616172 gthumb-dbgsym_3.6.2-4+deb10u1_ppc64el.deb 8df227398875f91b318efe39a29ad794c85ab96ab57ee42779a9b6dd3cb2a04a 672484 gthumb-dev_3.6.2-4+deb10u1_ppc64el.deb 330ff32b2854a19ca4934a7e8a87ca1e481f68eedba0854baabf9d8328e6df5f 21284 gthumb_3.6.2-4+deb10u1_ppc64el-buildd.buildinfo 6097093e06be0b65097034a518b1b9fc636b5e0c4c0c631c3cbc9cc8e04feff9 971896 gthumb_3.6.2-4+deb10u1_ppc64el.deb Files: 0e874a8ce17e2e1acc40c37cb44e5303 4616172 debug optional gthumb-dbgsym_3.6.2-4+deb10u1_ppc64el.deb 0037dec02fc81acdcdffe5a2e10eb975 672484 devel optional gthumb-dev_3.6.2-4+deb10u1_ppc64el.deb ca56c40cb905fe4c107ce21b47127c42 21284 gnome optional gthumb_3.6.2-4+deb10u1_ppc64el-buildd.buildinfo 3e9e4b9ab63251d863315b331fa94410 971896 gnome optional gthumb_3.6.2-4+deb10u1_ppc64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEzxcBZLbWYROS8SGLQ0vh8H8HxvwFAmFPnhQACgkQQ0vh8H8H xvynSxAApAQb68fSOEsQY3jA3Tf8ZgHMYfPo2Ism97+iCL+8qye7pK0KsNvjdn8t 3axsI+zGTytiDxbpUmtf57ryNq1IG+LkDSFdkJG8Oc36A7XREDxxuScZlF/F9qAx qwWeuQoSPt/p+GSZrr1bbGEXQHkZJIZK8WypZS1gH5j1KD4rWrixz0Dc1VaP2Ps4 9rJ3pF52IAbdxi+cmYry0FH1fWFjiv2xUKKo1QYgh4a/eilsb0zQ4TiIwi0PLHKP keyPa1AYeZuC19GVipnmZDaWGeB6Tj/dNcw5JNeV7EnYwP9l8JEKzPJK8jxCa1SN SNlS1iYg+zqpvCScOdnkyxXiFv+pGmtDdTMH2jnnk4QgqUAWBVmNrKn3LpfKJPJy YmduT0v79yPlIz8Ud8TdiV8RO/7ATG1EH4zcZMd2uWuw3FwCp1le7tlE0hBELYXg b99BYoALhEYGYEuNQBsFlXZqy4OXV6XRTeaP7ecsFDSg0hZvP7ByS6CiQ0Nxu6lU m97adoHzVzQgF7H/1eoqLzvNNHqvxVgWa5f8s6lNDztOUOxYrliiUKB1ovrl144B Fkywnw1AbgBTFDhnCdHLnrLqVazqioyMr0YAvZN177FjcR3OTxJancszMTc3a6qN BHOrm4YBp2gkMMnmMlbQrfkosPog5JSrqNgo06JCYRTpcjstvBw= =KF+F -----END PGP SIGNATURE-----