[ubuntu/artful-proposed] libxfont1 1:1.5.2-4ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Mon Oct 9 20:57:49 UTC 2017


libxfont1 (1:1.5.2-4ubuntu1) artful; urgency=medium

  * SECURITY UPDATE: invalid memory read in PatternMatch
    - debian/patches/CVE-2017-13720.patch: check for end of string in
      src/fontfile/fontdir.c.
    - CVE-2017-13720
  * SECURITY UPDATE: DoS or info leak via malformed PCF file
    - debian/patches/CVE-2017-13722.patch: check string boundaries in
      src/bitmap/pcfread.c.
    - CVE-2017-13722

Date: Fri, 06 Oct 2017 10:05:59 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libxfont1/1:1.5.2-4ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 06 Oct 2017 10:05:59 -0400
Source: libxfont1
Binary: libxfont1 libxfont1-dev
Architecture: source
Version: 1:1.5.2-4ubuntu1
Distribution: artful
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
 libxfont1  - X11 font rasterisation library
 libxfont1-dev - X11 font rasterisation library (development headers)
Changes:
 libxfont1 (1:1.5.2-4ubuntu1) artful; urgency=medium
 .
   * SECURITY UPDATE: invalid memory read in PatternMatch
     - debian/patches/CVE-2017-13720.patch: check for end of string in
       src/fontfile/fontdir.c.
     - CVE-2017-13720
   * SECURITY UPDATE: DoS or info leak via malformed PCF file
     - debian/patches/CVE-2017-13722.patch: check string boundaries in
       src/bitmap/pcfread.c.
     - CVE-2017-13722
Checksums-Sha1:
 367664caddd6bf4f327e08f407d15ec5ebd2fe4f 2217 libxfont1_1.5.2-4ubuntu1.dsc
 ecee73edcd60fd53faa8f669b957a5def7ed6faa 16906 libxfont1_1.5.2-4ubuntu1.diff.gz
 20c9177c78e4adc0826ccd9a926c099907ea763b 6510 libxfont1_1.5.2-4ubuntu1_source.buildinfo
Checksums-Sha256:
 1678d2a6569fefbf0cbb93c7d525984d6220ecfddef0fc3fb12e6af85444cee6 2217 libxfont1_1.5.2-4ubuntu1.dsc
 12448bb6e4b64f880d7044bae7bc9bf9f8e827f7e02a0d19831be0612ae609ab 16906 libxfont1_1.5.2-4ubuntu1.diff.gz
 df5e1229bd8f11748b94dd994ea9343235fcb0ae672ef8a8c1e16d123befa375 6510 libxfont1_1.5.2-4ubuntu1_source.buildinfo
Files:
 99061e889186757609338b3f782868f0 2217 x11 optional libxfont1_1.5.2-4ubuntu1.dsc
 03b8d25165c2bb334bc2669a5ff2105f 16906 x11 optional libxfont1_1.5.2-4ubuntu1.diff.gz
 f255b5d69402eb3462811ca09d95bb5b 6510 x11 optional libxfont1_1.5.2-4ubuntu1_source.buildinfo
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>


More information about the Artful-changes mailing list