-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 01 Jul 2026 10:47:59 +0200 Source: jq Architecture: source Version: 1.6-2.1+deb12u2 Distribution: bookworm-security Urgency: high Maintainer: ChangZhuo Chen (陳昌倬) Changed-By: Andreas Henriksson Closes: 1133921 1136445 Changes: jq (1.6-2.1+deb12u2) bookworm-security; urgency=high . * Non-maintainer upload by the LTS Team. * CVE-2026-32316 (Closes: #1133921) * CVE-2026-33947 * CVE-2026-33948 * CVE-2026-39956 * CVE-2026-39979 * CVE-2026-40164 * CVE-2026-41256 (Closes: #1136445) * CVE-2026-41257 * CVE-2026-43896 * CVE-2026-43895 * CVE-2026-44777 * CVE-2026-43894 * CVE-2026-47770 * CVE-2026-49839 * GHSA-ggc9-rpv2-xgpm and GHSA-gvwx-xj9r-3frq * CVE-2026-54679 Checksums-Sha1: c10217110f716e6e3c1abe05d35782fa2848bdfe 1973 jq_1.6-2.1+deb12u2.dsc 2fdbf962ec939eafb2c37427adcd7fab94293cd4 419859 jq_1.6.orig.tar.gz 74ad5ffb03b4993b05de37e8bd75f704274aa3c6 28368 jq_1.6-2.1+deb12u2.debian.tar.xz 9cfbb606f64802d6779e47d7001be19330ebd2dd 6849 jq_1.6-2.1+deb12u2_source.buildinfo Checksums-Sha256: ac53e4e0af865fd228e47c26a6d9a34da459fd4fbc2ab90815147dfeedf6ded0 1973 jq_1.6-2.1+deb12u2.dsc 3ba940b97571c866923f0409678033d33b5a98758dfc174fad8397ed908bc4d9 419859 jq_1.6.orig.tar.gz 88498e8c917c09ddee251544b0525051551e6a0552c862625696a3e83469ae66 28368 jq_1.6-2.1+deb12u2.debian.tar.xz 7efe4a88e191722f1d33a1f7571821cd78a768d2e1de879139da0f451b19baeb 6849 jq_1.6-2.1+deb12u2_source.buildinfo Files: 1af7d074b8a3fbdbc18d1837ac263096 1973 utils optional jq_1.6-2.1+deb12u2.dsc 430dd5b73f36db64fd7c128a0313e98e 419859 utils optional jq_1.6.orig.tar.gz 53989e73b541e157e695f0bb5ee2caa8 28368 utils optional jq_1.6-2.1+deb12u2.debian.tar.xz bacf508f0c60e863c6c1b229da8763c0 6849 utils optional jq_1.6-2.1+deb12u2_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE+uHltkZSvnmOJ4zCC8R9xk0TUwYFAmpFIxYACgkQC8R9xk0T Uwa5Vg//ZNYpaaf5nW3yXz/W59OzAnjHI2PZK2Jsc92bzKxBpYvK4bmIkRZzJp5F Xn03kbjNFKaSDbHoFr8fkzb5LomYq4Dq15RimQ4K2paOpt44O5uJ8fKsjchAbdh2 21Hdo9MISZzVt0XleMdlCVPdqxkjsjh7AGa7Jvei9pcQc29duPDYiOo6ftds9Inr vsHDBlu2Ga+baxVhL/pwVgMOUB+uLWd2o3hbo/06ADTM5hha3cXe4ZZvhwadFVjB Q/Yjfb73OkdU60W226vIToVXD0JQBXfbbziisffwNci8Ky7zsoaVd5HdCjKi/u0X zLcjVruPdrwjao/cb1tDjF/3fopKE62uQjpWCenjzWB7gOmy6ovoUiDRXmJi6iuN n9oGmVz3HtJNDrxgIAM60sN4ztelO2UMKaBk/koAyhDdZGavGwWTHZS5ujNDrG9J 6I25sUE6gONNCbPvGbGpkpid4fLOkWE8ynGimOAhMObyM32x6JlOrfVg4+Thd4ez Feti/QWwxU6IA4jAOsjJmiKP/vuZnJn+oLGQb0wXsqWsHN3k1D/HpwFkulkh1I6A 2hXJH0eQR4tjbHI3iyjB78/r/JkwWR0RbKgeb0K0M6667H7XakN38wA5uQlrplcG RW2INwsyN+l+RN07NhryLplkdXKTSShYDyNJ2fipZcIn+vNSDgc= =Hld9 -----END PGP SIGNATURE-----