-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 14 Oct 2022 14:21:50 +0200
Source: tinyexr
Architecture: source
Version: 1.0.0+dfsg-1+deb11u1
Distribution: bullseye
Urgency: medium
Maintainer: Timo Röhling <timo@gaussglocke.de>
Changed-By: Timo Röhling <roehling@debian.org>
Changes:
tinyexr (1.0.0+dfsg-1+deb11u1) bullseye; urgency=medium
.
* Fix vulnerabilities.
- CVE-2022-34300: Heap overflow in DecodePixelData
- CVE-2022-38529: Heap overflow in rleUncompress
Checksums-Sha1:
6c5f163463d3c9496debd61722d3f79c6a29d37c 1891 tinyexr_1.0.0+dfsg-1+deb11u1.dsc
c74e2449aeb7004f66f443bb5748061277ff7b12 8560 tinyexr_1.0.0+dfsg-1+deb11u1.debian.tar.xz
Checksums-Sha256:
358695ab9fffb83d6ab4209086a044c2ffcecede3ba7d2a0392821b022334c39 1891 tinyexr_1.0.0+dfsg-1+deb11u1.dsc
936785c4e802ece15c0e79ae4374295da81bcd8ad593d3ea45a71c73c1a5e937 8560 tinyexr_1.0.0+dfsg-1+deb11u1.debian.tar.xz
Files:
5aac596c6c0700ab96df940900b82499 1891 libs optional tinyexr_1.0.0+dfsg-1+deb11u1.dsc
a8ad7db52228a077cee6fea307c2d223 8560 libs optional tinyexr_1.0.0+dfsg-1+deb11u1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=lfHS
-----END PGP SIGNATURE-----
