-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 03 Jul 2025 16:06:10 +0800
Source: jpeg-xl
Binary: libjpegxl-java libjpegxl-java-dbgsym libjxl-dev libjxl-devtools libjxl-devtools-dbgsym libjxl-tools libjxl-tools-dbgsym libjxl0.7 libjxl0.7-dbgsym
Architecture: s390x
Version: 0.7.0-10+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: s390x Build Daemon (zani) <buildd_s390x-zani@buildd.debian.org>
Changed-By: Aron Xu <aron@debian.org>
Description:
 libjpegxl-java - JPEG XL Image Coding System - "JXL" (java bindings)
 libjxl-dev - JPEG XL Image Coding System - "JXL" (development files)
 libjxl-devtools - JPEG XL Image Coding System - "JXL" (dev command line utility)
 libjxl-tools - JPEG XL Image Coding System - "JXL" (command line utility)
 libjxl0.7  - JPEG XL Image Coding System - "JXL" (shared libraries)
Closes: 1034722 1055306 1088818
Changes:
 jpeg-xl (0.7.0-10+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2023-0645: out of bounds read in the exif handler (Closes: #1034722)
   * CVE-2023-35790: integer underflow in patch decoding can lead to a denial
     of service issue. (Closes: #1055306)
   * CVE-2024-11403: out-of-bounds write in the JPEG decoder when doing
     recompression. (Closes: #1088818)
   * CVE-2024-11498: stack buffer overflow in modular trees (Closes: #1088818)
Checksums-Sha1:
 4d663bf439d32514208510bfec53f750cdfd53a4 14271 jpeg-xl_0.7.0-10+deb12u1_s390x-buildd.buildinfo
 74a8a43e9b589d070607c49cd82492981f884df2 7422620 libjpegxl-java-dbgsym_0.7.0-10+deb12u1_s390x.deb
 48c8c3ec61f121369644a12dbba03eeb0e34b778 305248 libjpegxl-java_0.7.0-10+deb12u1_s390x.deb
 a879c39bd9260236d126931501db347def830d67 49636 libjxl-dev_0.7.0-10+deb12u1_s390x.deb
 2f7d55ade2e5c053dd03820256ac016554950fb9 214021160 libjxl-devtools-dbgsym_0.7.0-10+deb12u1_s390x.deb
 2405736a85a5269b67f6a9fa13bde0c111bed30c 1812696 libjxl-devtools_0.7.0-10+deb12u1_s390x.deb
 c5d31d3dd66a6c0801aa48d130f2a2ea2e5c48e1 20995088 libjxl-tools-dbgsym_0.7.0-10+deb12u1_s390x.deb
 94caba5793362040c2804dae8f828c09b5dec6d7 713084 libjxl-tools_0.7.0-10+deb12u1_s390x.deb
 5d4c537a81e4f2939310a0b01ef848b5a8393d22 17146088 libjxl0.7-dbgsym_0.7.0-10+deb12u1_s390x.deb
 34184f93505ed6fd7a2ce487abeed41edb57f5e8 638632 libjxl0.7_0.7.0-10+deb12u1_s390x.deb
Checksums-Sha256:
 f04ab1f67a0288ea6bd92e07c47afacce755b9db159205481a21e1670afae5d9 14271 jpeg-xl_0.7.0-10+deb12u1_s390x-buildd.buildinfo
 15789429b3f4150e432daacef40bf088d4c3178c170d040cc12b52977f54e540 7422620 libjpegxl-java-dbgsym_0.7.0-10+deb12u1_s390x.deb
 b9c6820e3c64156f09c468b9109f63584fa6374d8e2093f77607705ceb04542d 305248 libjpegxl-java_0.7.0-10+deb12u1_s390x.deb
 0145f7ccdda45a6a70f2d47efde4f9d03cfd3fb24637607c2a197018c49fb8d4 49636 libjxl-dev_0.7.0-10+deb12u1_s390x.deb
 c08f46bed7de84fe0115f8a6b3b1c8aef1ef1b15c560141f83a5200430657a38 214021160 libjxl-devtools-dbgsym_0.7.0-10+deb12u1_s390x.deb
 e0e0adbffcd09e09c84aaf81aab266cc76dd1ab2bc906968463aa766f611f750 1812696 libjxl-devtools_0.7.0-10+deb12u1_s390x.deb
 760294c8da498e398dff3067ebf5c4b774edc1977fa65539421eee8d5f2e5c4b 20995088 libjxl-tools-dbgsym_0.7.0-10+deb12u1_s390x.deb
 ef748ab00882e5d1ce445579666f91ebb733ad2d2290cc341d11eeb330e4dea3 713084 libjxl-tools_0.7.0-10+deb12u1_s390x.deb
 3ade77bb98ba139c4142e3d863d380d1d1c4dc6e26d58329b76157bb21b19709 17146088 libjxl0.7-dbgsym_0.7.0-10+deb12u1_s390x.deb
 63ab8cadec89983bc8c150d99d694984c08e16701c8d062f0385cfad3557e4a1 638632 libjxl0.7_0.7.0-10+deb12u1_s390x.deb
Files:
 76e077620c1a55d1ef13ba61890978d9 14271 graphics optional jpeg-xl_0.7.0-10+deb12u1_s390x-buildd.buildinfo
 be41f9052efb664e2bb332058f00994f 7422620 debug optional libjpegxl-java-dbgsym_0.7.0-10+deb12u1_s390x.deb
 d8bf4f1feeb75bf0efe04a60c7f55116 305248 java optional libjpegxl-java_0.7.0-10+deb12u1_s390x.deb
 44c02737350e18c4694f92b94ad5362e 49636 libdevel optional libjxl-dev_0.7.0-10+deb12u1_s390x.deb
 f11682f120d69a7f94d9e75aa46121e8 214021160 debug optional libjxl-devtools-dbgsym_0.7.0-10+deb12u1_s390x.deb
 80455e9d0b279a241473055f781aa40b 1812696 utils optional libjxl-devtools_0.7.0-10+deb12u1_s390x.deb
 06c4c4ad61fec81f70a28751fe99dcba 20995088 debug optional libjxl-tools-dbgsym_0.7.0-10+deb12u1_s390x.deb
 ed165031bfdc44018289385a2d6f12a9 713084 utils optional libjxl-tools_0.7.0-10+deb12u1_s390x.deb
 09d31fd18519242d17cdef270ba0b4c1 17146088 debug optional libjxl0.7-dbgsym_0.7.0-10+deb12u1_s390x.deb
 9ad938616c689080b855ecedc0049930 638632 libs optional libjxl0.7_0.7.0-10+deb12u1_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=12iO
-----END PGP SIGNATURE-----