-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 01 Mar 2026 16:14:12 +0900 Source: calibre Binary: calibre-bin calibre-bin-dbgsym Architecture: i386 Version: 6.13.0+repack-2+deb12u6 Distribution: bookworm Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: YOKOTA Hiroshi Description: calibre-bin - powerful and easy to use e-book manager (binary plugins) Changes: calibre (6.13.0+repack-2+deb12u6) bookworm; urgency=medium . * CVE-2026-25635: CHM Input: Ignore internal files that have paths that end up outside the container * CVE-2026-25636: DRYer * CVE-2026-25731: ZIP Output: Change the template engine used for HTML templating from templite to Mustache, for greater safety and performance. Note that this is a breaking change if you use custom templates with ZIP output. * Use pystache instead of templite to fix CVE-2026-25731 * Add NEWS about CVE-2026-25731 fix * CVE-2026-26064: ODT Input: Ensure images are extracted within container * CVE-2026-26065: PDB Input: Ensure extracted images are within the container * CVE-2026-27810: Content server: Sanitize content disposition received as query parameter * CVE-2026-27824: Content server: When banning IPs for repeated login is enabled, only use the IP address not any HTTP headers as the ban key Checksums-Sha1: dfac6c6f529fdf1d85b57a78e7f8a492e62fcf33 4413488 calibre-bin-dbgsym_6.13.0+repack-2+deb12u6_i386.deb 20f2db1f44efe6511e2b7f4659a7b05f4afbd12c 820024 calibre-bin_6.13.0+repack-2+deb12u6_i386.deb f9a5b59d0b2adfbc6c8c99f294c5cf051eb1a9f0 18131 calibre_6.13.0+repack-2+deb12u6_i386-buildd.buildinfo Checksums-Sha256: 2d5ff16ef2b6d9899adf988bc31dcb9be1d068a7741a024404614e9b5a5803c4 4413488 calibre-bin-dbgsym_6.13.0+repack-2+deb12u6_i386.deb c8074f6407dea1c26c439e173b845b5e71bc8176c43dcb1663b68925bd6840b3 820024 calibre-bin_6.13.0+repack-2+deb12u6_i386.deb 0b1910a4cad5774caca38ed4217aa27f470946964c0391f738bc03b23c990574 18131 calibre_6.13.0+repack-2+deb12u6_i386-buildd.buildinfo Files: 7a93065486c210ac031dc6b351915d15 4413488 debug optional calibre-bin-dbgsym_6.13.0+repack-2+deb12u6_i386.deb 8420de050385cd01e2c55915af87ea71 820024 text optional calibre-bin_6.13.0+repack-2+deb12u6_i386.deb 2f2161333f0719a316234123c15a4f56 18131 text optional calibre_6.13.0+repack-2+deb12u6_i386-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE+i/sCsF3puL4e7qIGNGWmfrqILEFAmn2dGIACgkQGNGWmfrq ILH7eQ//XFuciMiSMe60GwJMp2IFVI1+4h6B88+X+OS0AZeBzYhJAb5r8nK4DVZP zDEhSImEkI65s4vV+dG5mT6oCRJm7Cg9YYuFkQScEjokmsQAsnynxc75gm8IXIZ2 Z+dbp4lalmxUP3eY1B6wKf4ewxHAFDDFrVbbwcIVJD0WdW6KswFfdYQy+/p6oCPo AJlsO4Ga/CsBR0p/zGjFGGVGCV2CLZpq/UDFhsz+Sbsm8vW4tT+bjqTkolbz3OLZ HBpt/SkDX6Fj0tqha6he1pc/wKLv9iC7DO/BVzT6AoWKLX/b1z4LfvLGRMj21KVa gZGDqvvlpbfZuc9Muexqi/McXZ5c78m46W22o/yuM8fU6uYruK/57iPAB8Mfmnt1 cnrew7x8YGh3nfbhFvJjeE2qSRlixh9Adu07wZ0IzYqY6RPO6u0tljl72WfePH9N cCBzWjLLT8BYV+22yLy8+2wuudVJMhqRbOSmX1Y5HRib9idUCSiSuR3GcJW/PN9o 1g44xf/FUj85JJJxe03deCLsvTzjLTGbFpc2vUdqswY1a5TCRDM/2hYyuk6IZ8rU IC0SNJY3EI3I6lEBj2DZbNNqsu/K6NGTSdTMgqQvG9eAHDnMdeuj3u4Emzj/m0a2 /7/PR27aJO/a0XWsGpAkk2g2d5ckkSaIG+NM3Pb8shqEtRl+xMU= =7N4G -----END PGP SIGNATURE-----