[ubuntu/groovy-updates] freetype 2.10.2+dfsg-3ubuntu1 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu Oct 22 16:28:10 UTC 2020

freetype (2.10.2+dfsg-3ubuntu1) groovy; urgency=medium

  * SECURITY UPDATE: heap buffer overflow via integer truncation in
    - debian/patches/CVE-2020-15999.patch: Update src/sfnt/pngshim.c to
      test and reject invalid bitmap size earlier in Load_SBit_Png. Based on
      upstream patch.
    - CVE-2020-15999

Date: 2020-10-20 04:04:13.025367+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Groovy-changes mailing list