libheif (1.1.0-2ubuntu0.1~esm3) bionic-security; urgency=medium

  * SECURITY UPDATE: Heap overflow in HeifPixelImage.
    - debian/patches/CVE-2026-32882.patch: Fix overlay image with alpha
      channels with stride different from color channel in
      src/heif_image.cc
    - CVE-2026-32882

 -- Kyle Kernick <kyle.kernick@canonical.com>  Tue, 16 Jun 2026 18:08:21 -0600

libheif (1.1.0-2ubuntu0.1~esm2) bionic-security; urgency=medium

  * SECURITY UPDATE: Buffer Overflow
    - debian/patches/CVE-2025-68431.patch: Fix wrong copy width in
      overlay images, thanks to Aldo Ristori
    - CVE-2025-68431

 -- Bruce Cable <bruce.cable@canonical.com>  Wed, 07 Jan 2026 17:32:40 +1100

libheif (1.1.0-2ubuntu0.1~esm1) bionic-security; urgency=medium

  * SECURITY UPDATE: use-after-free and buffer overflow
    - debian/patches/CVE-2019-11471.patch: Detect non-existing
      referenced alpha images (fixes #123)
    - debian/patches/CVE-2023-0996.patch: JS: Fix copying of strided
      image data.
    - CVE-2019-11471
    - CVE-2023-0996

 -- Allen Huang <allen.huang@canonical.com>  Wed, 19 Jun 2024 10:32:20 +0100

libheif (1.1.0-2) unstable; urgency=medium

  * Add patch to fix compile errors on mips, ppc and other platforms.

 -- Joachim Bauch <bauch@struktur.de>  Thu, 19 Apr 2018 09:04:15 +0200

libheif (1.1.0-1) unstable; urgency=medium

  [ Joachim Bauch ]
  * d/control: Set Maintainer to Debian Multimedia Maintainers
  * d/control: Set Vcs-* to salsa.debian.org

  [ Felipe Sateler ]
  * Change maintainer address to debian-multimedia@lists.debian.org

  [ Joachim Bauch ]
  * Use default branch/tag names.
  * Imported Upstream version 1.1.0
  * Add dependency on "libx265-dev".
  * Update symbols for new upstream version.

 -- Joachim Bauch <bauch@struktur.de>  Wed, 18 Apr 2018 16:28:10 +0200

libheif (1.0.0-1) unstable; urgency=medium

  * Initial release. (Closes: #888278)

 -- Joachim Bauch <bauch@struktur.de>  Sun, 18 Mar 2018 14:55:50 +0100
