-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 01 Jul 2026 10:47:59 +0200
Source: jq
Architecture: source
Version: 1.6-2.1+deb12u2
Distribution: bookworm-security
Urgency: high
Maintainer: ChangZhuo Chen (陳昌倬) <czchen@debian.org>
Changed-By: Andreas Henriksson <andreas@fatal.se>
Closes: 1133921 1136445
Changes:
 jq (1.6-2.1+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2026-32316 (Closes: #1133921)
   * CVE-2026-33947
   * CVE-2026-33948
   * CVE-2026-39956
   * CVE-2026-39979
   * CVE-2026-40164
   * CVE-2026-41256 (Closes: #1136445)
   * CVE-2026-41257
   * CVE-2026-43896
   * CVE-2026-43895
   * CVE-2026-44777
   * CVE-2026-43894
   * CVE-2026-47770
   * CVE-2026-49839
   * GHSA-ggc9-rpv2-xgpm and GHSA-gvwx-xj9r-3frq
   * CVE-2026-54679
Checksums-Sha1:
 c10217110f716e6e3c1abe05d35782fa2848bdfe 1973 jq_1.6-2.1+deb12u2.dsc
 2fdbf962ec939eafb2c37427adcd7fab94293cd4 419859 jq_1.6.orig.tar.gz
 74ad5ffb03b4993b05de37e8bd75f704274aa3c6 28368 jq_1.6-2.1+deb12u2.debian.tar.xz
 9cfbb606f64802d6779e47d7001be19330ebd2dd 6849 jq_1.6-2.1+deb12u2_source.buildinfo
Checksums-Sha256:
 ac53e4e0af865fd228e47c26a6d9a34da459fd4fbc2ab90815147dfeedf6ded0 1973 jq_1.6-2.1+deb12u2.dsc
 3ba940b97571c866923f0409678033d33b5a98758dfc174fad8397ed908bc4d9 419859 jq_1.6.orig.tar.gz
 88498e8c917c09ddee251544b0525051551e6a0552c862625696a3e83469ae66 28368 jq_1.6-2.1+deb12u2.debian.tar.xz
 7efe4a88e191722f1d33a1f7571821cd78a768d2e1de879139da0f451b19baeb 6849 jq_1.6-2.1+deb12u2_source.buildinfo
Files:
 1af7d074b8a3fbdbc18d1837ac263096 1973 utils optional jq_1.6-2.1+deb12u2.dsc
 430dd5b73f36db64fd7c128a0313e98e 419859 utils optional jq_1.6.orig.tar.gz
 53989e73b541e157e695f0bb5ee2caa8 28368 utils optional jq_1.6-2.1+deb12u2.debian.tar.xz
 bacf508f0c60e863c6c1b229da8763c0 6849 utils optional jq_1.6-2.1+deb12u2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Hld9
-----END PGP SIGNATURE-----
