[ubuntu/artful-proposed] libxfont 1:2.0.1-3ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Mon Oct 9 20:57:47 UTC 2017


libxfont (1:2.0.1-3ubuntu1) artful; urgency=medium

  * SECURITY UPDATE: invalid memory read in PatternMatch
    - debian/patches/CVE-2017-13720.patch: check for end of string in
      src/fontfile/fontdir.c.
    - CVE-2017-13720
  * SECURITY UPDATE: DoS or info leak via malformed PCF file
    - debian/patches/CVE-2017-13722.patch: check string boundaries in
      src/bitmap/pcfread.c.
    - CVE-2017-13722

Date: Fri, 06 Oct 2017 10:03:20 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libxfont/1:2.0.1-3ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 06 Oct 2017 10:03:20 -0400
Source: libxfont
Binary: libxfont2 libxfont2-udeb libxfont-dev
Architecture: source
Version: 1:2.0.1-3ubuntu1
Distribution: artful
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
 libxfont-dev - X11 font rasterisation library (development headers)
 libxfont2  - X11 font rasterisation library
 libxfont2-udeb - X11 font rasterisation library (udeb)
Changes:
 libxfont (1:2.0.1-3ubuntu1) artful; urgency=medium
 .
   * SECURITY UPDATE: invalid memory read in PatternMatch
     - debian/patches/CVE-2017-13720.patch: check for end of string in
       src/fontfile/fontdir.c.
     - CVE-2017-13720
   * SECURITY UPDATE: DoS or info leak via malformed PCF file
     - debian/patches/CVE-2017-13722.patch: check string boundaries in
       src/bitmap/pcfread.c.
     - CVE-2017-13722
Checksums-Sha1:
 9b031b3866c5e3564f558554da7d518947147fa0 2277 libxfont_2.0.1-3ubuntu1.dsc
 78283c559fb2e3b9d8677273f0a8c6c233e03ada 27916 libxfont_2.0.1-3ubuntu1.diff.gz
 f267049a14f3c64e16541a868a6eb7187192e0ee 6520 libxfont_2.0.1-3ubuntu1_source.buildinfo
Checksums-Sha256:
 892f74326b9811a3c4f28e7b12b6fa4113bc9967cd8a46a3e5dfa0bb2ed65323 2277 libxfont_2.0.1-3ubuntu1.dsc
 ef1ac303149e95dd48923f1c88cfe05a72ff812ef575b025d650ef60112676a5 27916 libxfont_2.0.1-3ubuntu1.diff.gz
 1ce11ed66d4c55400f28d7a86486d5e34c4562468718de2630d62d41d6d303fd 6520 libxfont_2.0.1-3ubuntu1_source.buildinfo
Files:
 d8b9d564acf3b162b86be6adca4f1386 2277 x11 optional libxfont_2.0.1-3ubuntu1.dsc
 484ac6a82f42871bd5f969353c4fd9a3 27916 x11 optional libxfont_2.0.1-3ubuntu1.diff.gz
 101b04fb82977b461fdde7da6cc2d181 6520 x11 optional libxfont_2.0.1-3ubuntu1_source.buildinfo
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>


More information about the Artful-changes mailing list