[ubuntu/artful-proposed] libxfont1 1:1.5.2-4ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Mon Oct 9 20:57:49 UTC 2017
libxfont1 (1:1.5.2-4ubuntu1) artful; urgency=medium
* SECURITY UPDATE: invalid memory read in PatternMatch
- debian/patches/CVE-2017-13720.patch: check for end of string in
src/fontfile/fontdir.c.
- CVE-2017-13720
* SECURITY UPDATE: DoS or info leak via malformed PCF file
- debian/patches/CVE-2017-13722.patch: check string boundaries in
src/bitmap/pcfread.c.
- CVE-2017-13722
Date: Fri, 06 Oct 2017 10:05:59 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libxfont1/1:1.5.2-4ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 06 Oct 2017 10:05:59 -0400
Source: libxfont1
Binary: libxfont1 libxfont1-dev
Architecture: source
Version: 1:1.5.2-4ubuntu1
Distribution: artful
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libxfont1 - X11 font rasterisation library
libxfont1-dev - X11 font rasterisation library (development headers)
Changes:
libxfont1 (1:1.5.2-4ubuntu1) artful; urgency=medium
.
* SECURITY UPDATE: invalid memory read in PatternMatch
- debian/patches/CVE-2017-13720.patch: check for end of string in
src/fontfile/fontdir.c.
- CVE-2017-13720
* SECURITY UPDATE: DoS or info leak via malformed PCF file
- debian/patches/CVE-2017-13722.patch: check string boundaries in
src/bitmap/pcfread.c.
- CVE-2017-13722
Checksums-Sha1:
367664caddd6bf4f327e08f407d15ec5ebd2fe4f 2217 libxfont1_1.5.2-4ubuntu1.dsc
ecee73edcd60fd53faa8f669b957a5def7ed6faa 16906 libxfont1_1.5.2-4ubuntu1.diff.gz
20c9177c78e4adc0826ccd9a926c099907ea763b 6510 libxfont1_1.5.2-4ubuntu1_source.buildinfo
Checksums-Sha256:
1678d2a6569fefbf0cbb93c7d525984d6220ecfddef0fc3fb12e6af85444cee6 2217 libxfont1_1.5.2-4ubuntu1.dsc
12448bb6e4b64f880d7044bae7bc9bf9f8e827f7e02a0d19831be0612ae609ab 16906 libxfont1_1.5.2-4ubuntu1.diff.gz
df5e1229bd8f11748b94dd994ea9343235fcb0ae672ef8a8c1e16d123befa375 6510 libxfont1_1.5.2-4ubuntu1_source.buildinfo
Files:
99061e889186757609338b3f782868f0 2217 x11 optional libxfont1_1.5.2-4ubuntu1.dsc
03b8d25165c2bb334bc2669a5ff2105f 16906 x11 optional libxfont1_1.5.2-4ubuntu1.diff.gz
f255b5d69402eb3462811ca09d95bb5b 6510 x11 optional libxfont1_1.5.2-4ubuntu1_source.buildinfo
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>
More information about the Artful-changes
mailing list