[ubuntu/bionic-proposed] libxfont1 1:1.5.2-4ubuntu2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Wed Nov 29 20:22:18 UTC 2017
libxfont1 (1:1.5.2-4ubuntu2) bionic; urgency=medium
* SECURITY UPDATE: non-privileged arbitrary file access
- debian/patches/CVE-2017-16611.patch: open files with O_NOFOLLOW in
src/fontfile/dirfile.c, src/fontfile/fileio.c.
- CVE-2017-16611
Date: Wed, 29 Nov 2017 15:12:15 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libxfont1/1:1.5.2-4ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 29 Nov 2017 15:12:15 -0500
Source: libxfont1
Binary: libxfont1 libxfont1-dev
Architecture: source
Version: 1:1.5.2-4ubuntu2
Distribution: bionic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libxfont1 - X11 font rasterisation library
libxfont1-dev - X11 font rasterisation library (development headers)
Changes:
libxfont1 (1:1.5.2-4ubuntu2) bionic; urgency=medium
.
* SECURITY UPDATE: non-privileged arbitrary file access
- debian/patches/CVE-2017-16611.patch: open files with O_NOFOLLOW in
src/fontfile/dirfile.c, src/fontfile/fileio.c.
- CVE-2017-16611
Checksums-Sha1:
4a6821320f9a4510d4a183ec50723a4cf5f22cf3 2217 libxfont1_1.5.2-4ubuntu2.dsc
6d5b22d932acf7fdb9dd5e3d4ce6549ffef192a7 18276 libxfont1_1.5.2-4ubuntu2.diff.gz
7e8d847442c581ea583994f8e6d4784463ea0151 6379 libxfont1_1.5.2-4ubuntu2_source.buildinfo
Checksums-Sha256:
4dd13c5fcbf9c166635e8930500a77a0f333005b3965b828076b1409f4e8d988 2217 libxfont1_1.5.2-4ubuntu2.dsc
2d98bd8e86e1162c0d539d0c4e1565142927a613aa85ef6acbc9a535f9f5af1f 18276 libxfont1_1.5.2-4ubuntu2.diff.gz
c3f6ec7ddc2c063a58e63965a409ce9eec28ed63730147bba59a2820ce0149e6 6379 libxfont1_1.5.2-4ubuntu2_source.buildinfo
Files:
d24d55d009ebae3e1095a335232f5928 2217 x11 optional libxfont1_1.5.2-4ubuntu2.dsc
77d83123e083c068a96cb840805a3d1b 18276 x11 optional libxfont1_1.5.2-4ubuntu2.diff.gz
cf3198ebcd44d71f95d1198fc81b14a3 6379 x11 optional libxfont1_1.5.2-4ubuntu2_source.buildinfo
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAEBCgAGBQJaHxbAAAoJEGVp2FWnRL6T5ZMP/35MLxRdlf4kSZiLeZIXwPiG
hz6tWEzlst5LRnHZAKvMtfx4O/sFGjediouxZZTC9xH+CMrs4gY1JdbrULMlNFA3
l9C1f+ThuDBKUuOI86S0j/O489CNezOehkVDdOtiPod7KUdsb8u4IAB0KP2mACMF
LqOuDzNTxSfYm0GEOw6JzJ/4Pk4CLrq/XK+Cq705Q11TpaBUe0vaSUqYJzu1lIX3
yivVZHLQZ6/kLpgPPOp5BjARzvaymnRU044V6lflEZhaTix346/9XqktAnCtIOhP
ZOYP9BvH9gSBgtSLfy2jLO/KpDJdaLsNdto4rWjLieaiBwfR7lPMlCFYa60g2Vbe
W3UKreZZ0d1M0d0OsWPnPaq+p7qrnPveJpvJ1Lb2qceJS4J9bUz6lH6yyt3HVw76
794FD8v8oLur+3t6wxhO/JnA5p9Y+92R1MuXlhrszqBT4MzkNeVhaPqsJ2qWqcIC
UADDiVL5guAX8EmvczTaGaieujmttFgH4vgiqku3KWc0UhkYMtWUrOad1+lESUc+
H2DntVb2Lu4ZInfCVNTGfiteZ52EQkD+Ufw9+tEmVnEpS7FVwldzDDNv0Sv1milg
rj0qvi+rtp97ZdaXg4hhUMRHu1rC04VdlAmwmalSKifRRfF5qymdbb/dKV74vhuM
QFoSaUMfI4K2q0Y5+ZvW
=0xv8
-----END PGP SIGNATURE-----
More information about the Bionic-changes
mailing list