rlottie (0~git20200305.a717479+dfsg-1ubuntu0.1~esm2) focal-security; urgency=medium

  * SECURITY UPDATE: Memory overflow vulnerability
    - d/p/CVE-2025-0634-CVE-2025-53074-CVE-2025-53075.patch: Add validation
      checks to address potential vulnerabilities in case of a malicious
      lottie file
    - CVE-2025-0634
    - CVE-2025-53074
    - CVE-2025-53075

 -- Shishir Subedi <shishir.subedi@canonical.com>  Fri, 20 Feb 2026 13:23:31 +0545

rlottie (0~git20200305.a717479+dfsg-1ubuntu0.1~esm1) focal-security; urgency=medium

  * SECURITY UPDATE: Stack-based buffer overflow patch was incomplete
    - debian/patches/Check-buffer-length.patch: Amend patch to properly
      check buffer bounds in the src/vector/vrle.cpp blit function
      and its variants.
    - CVE-2021-31315
  * SECURITY UPDATE: Read out of bounds via <VDasher::Dash> type confusion
    - debian/patches/Extend-mDash-array.patch: Check size of
      <VDasher::Dash> objects before accessing them in functions
      applyDashOp of src/vector/vdrawable.cpp and getDashInfo of
      src/lottie/lottiemodel.cpp.
    - CVE-2021-31317
  * SECURITY UPDATE: Read out of bounds via <LOTLayerData *> type
    confusion
    - debian/patches/Fix-crash-on-invalid-data.patch: Check the type
      attribute of objects to be <LOTData::Type::Layer> before they are
      casted to <LOTLayerData *> in function LOTCompLayerItem of
      src/lottie/lottieitem.cpp. .
    - CVE-2021-31318
  * SECURITY UPDATE: Read out of bounds via integer overflow
    - debian/patches/Fix-crash-on-invalid-data.patch: Replace a comparison
      expression with an equivalent one that avoids multiplying
      colorPoints in function populate of src/lottie/lottiemodel.cpp.
    - CVE-2021-31319
  * SECURITY UPDATE: Heap-based buffer overflow via missing bounds
    checking
    - debian/patches/Fix-crash-on-invalid-data.patch: Add bounds checking
      for the variable pos before using it as an index in function
      generateGradientColorTable of src/vector/vdrawhelper.cpp.
    - CVE-2021-31320
  * SECURITY UPDATE: Stack-based buffer overflow patch was incomplete
    - debian/patches/Freetype-raster.patch: Amend patch to correctly check
      return conditions in the gray_render_cubic function and also check
      the number of ycells in the gray_find_cell function of
      src/vector/freetype/v_ft_raster.cpp.
    - CVE-2021-31321
  * SECURITY UPDATE: Heap-based buffer overflow via missing bounds
    checking
    - debian/patches/Fix-crash-on-invalid-data.patch: Adjust the value of
      colorPoints if necessary to add bounds checking in function populate
      of src/lottie/lottiemodel.cpp.
    - CVE-2021-31322

 -- Nicolas Campuzano Jimenez <nicolas.campuzano@canonical.com>  Tue, 17 Dec 2024 14:09:25 -0500

rlottie (0~git20200305.a717479+dfsg-1) unstable; urgency=medium

  * Merge the latest upstream commit.
  * Fix some crashes on corrupted input.
  * Activate in-library cache support.
  * Bump Standards Version to 4.5.0, no related changes.

 -- Nicholas Guriev <guriev-ns@ya.ru>  Thu, 05 Mar 2020 22:16:05 +0300

rlottie (0~git20190721.24346d0+dfsg-2) unstable; urgency=medium

  * Copy full text of The FreeType Project License to debian/copyright file.

 -- Nicholas Guriev <guriev-ns@ya.ru>  Sun, 11 Aug 2019 14:19:58 +0300

rlottie (0~git20190721.24346d0+dfsg-1) unstable; urgency=low

  * Initial upload. (Closes: #931832)

 -- Nicholas Guriev <guriev-ns@ya.ru>  Tue, 23 Jul 2019 08:21:50 +0300
