-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 26 Mar 2026 11:06:04 +0100
Source: simpleeval
Architecture: source
Version: 1.0.3-1+deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: Debian Tryton Maintainers <team+tryton-team@tracker.debian.org>
Changed-By: Mathias Behrle <mathiasb@m9s.biz>
Closes: 1130875
Changes:
 simpleeval (1.0.3-1+deb13u1) trixie-security; urgency=high
 .
   * Add 01_CVE-2026-32640.patch (Closes: #1130875)
     This patch fixes CVE-2026-32640
     https://github.com/danthedeckie/simpleeval/pull/171
     with commits
     https://github.com/danthedeckie/simpleeval/commit/9cb4a7b99498c173263bd90f77bc185e160fb6b8
     https://github.com/danthedeckie/simpleeval/commit/1654cbf0219345f707c79664b8657be6b8d23e33
     https://github.com/danthedeckie/simpleeval/commit/cffa9f68cee54404a2ef43d949a8ae8a3311c503
Checksums-Sha1:
 7b3ba0f04e8b7f17999fa485ea821dcb1eb05181 2215 simpleeval_1.0.3-1+deb13u1.dsc
 5b550e6121755c53cbdb4729ea116854dbfe67bb 24358 simpleeval_1.0.3.orig.tar.gz
 b5fe7f15e1e42924d68a4b07bf562bf770e015db 8916 simpleeval_1.0.3-1+deb13u1.debian.tar.xz
 7fbf6badd56c7de833a4d3b4dc11434f92a3e64c 7075 simpleeval_1.0.3-1+deb13u1_amd64.buildinfo
Checksums-Sha256:
 09f39d7aa05538cec94302235bbb4725e95152d4af9e789e87493b0b2a64f049 2215 simpleeval_1.0.3-1+deb13u1.dsc
 67bbf246040ac3b57c29cf048657b9cf31d4e7b9d6659684daa08ca8f1e45829 24358 simpleeval_1.0.3.orig.tar.gz
 707a5e7eeb1989963dacaf33eb9538bf2ff37ac42736e6ff2d64d93e09448f09 8916 simpleeval_1.0.3-1+deb13u1.debian.tar.xz
 0dd1a4e3f24b3d25fe62818389cf84663e0bfdcbb608c7ca9557808eb401963a 7075 simpleeval_1.0.3-1+deb13u1_amd64.buildinfo
Files:
 151e144fa6bdba6316f59d4ba0b996ab 2215 python optional simpleeval_1.0.3-1+deb13u1.dsc
 1ac148126cea4bb9ab9923dac4c6198f 24358 python optional simpleeval_1.0.3.orig.tar.gz
 69e00ff048b5bd2355c1bd0862122ae4 8916 python optional simpleeval_1.0.3-1+deb13u1.debian.tar.xz
 79900bebabb66c871c407610a46a652f 7075 python optional simpleeval_1.0.3-1+deb13u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
Comment: Signed by Mathias Behrle
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=hU4e
-----END PGP SIGNATURE-----