[ubuntu/karmic-security] freetype, freetype (delayed) 2.3.9-5ubuntu0.4 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Nov 4 13:08:06 GMT 2010
- Previous message: [ubuntu/karmic-security] pidgin_2.6.2-1ubuntu7.3_sparc_translations.tar.gz (delayed), pidgin_2.6.2-1ubuntu7.3_i386_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_amd64_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_ia64_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_armel_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_lpia_translations.tar.gz, pidgin, pidgin_2.6.2-1ubuntu7.3_powerpc_translations.tar.gz 1:2.6.2-1ubuntu7.3 (Accepted)
- Next message: [ubuntu/karmic-security] cups_1.4.1-5ubuntu2.7_ia64_translations.tar.gz, cups_1.4.1-5ubuntu2.7_i386_translations.tar.gz, cups_1.4.1-5ubuntu2.7_amd64_translations.tar.gz, cups_1.4.1-5ubuntu2.7_sparc_translations.tar.gz (delayed), cups_1.4.1-5ubuntu2.7_armel_translations.tar.gz, cups_1.4.1-5ubuntu2.7_powerpc_translations.tar.gz, cups_1.4.1-5ubuntu2.7_lpia_translations.tar.gz, cups 1.4.1-5ubuntu2.7 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
freetype (2.3.9-5ubuntu0.4) karmic-security; urgency=low
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via libXft overflow.
- debian/patches/CVE-2010-3311.patch: correctly validate position in
src/base/ftstream.c.
- CVE-2010-3311
* SECURITY UPDATE: denial of service and possible code execution via
improper error handling of SHZ bytecode instruction
- debian/patches/CVE-2010-3814.patch: add bounds check to
src/truetype/ttinterp.c.
- CVE-2010-3814
* SECURITY UPDATE: denial of service and possible code execution via
TrueType GX font
- debian/patches/CVE-2010-3855.patch: add bounds checks to
src/truetype/ttgxvar.c.
- CVE-2010-3855
Date: Tue, 02 Nov 2010 14:54:40 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/freetype/2.3.9-5ubuntu0.4
-------------- next part --------------
Format: 1.8
Date: Tue, 02 Nov 2010 14:54:40 -0400
Source: freetype
Binary: libfreetype6 libfreetype6-dev freetype2-demos libfreetype6-udeb
Architecture: source
Version: 2.3.9-5ubuntu0.4
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
freetype2-demos - FreeType 2 demonstration programs
libfreetype6 - FreeType 2 font engine, shared library files
libfreetype6-dev - FreeType 2 font engine, development files
libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb)
Changes:
freetype (2.3.9-5ubuntu0.4) karmic-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via libXft overflow.
- debian/patches/CVE-2010-3311.patch: correctly validate position in
src/base/ftstream.c.
- CVE-2010-3311
* SECURITY UPDATE: denial of service and possible code execution via
improper error handling of SHZ bytecode instruction
- debian/patches/CVE-2010-3814.patch: add bounds check to
src/truetype/ttinterp.c.
- CVE-2010-3814
* SECURITY UPDATE: denial of service and possible code execution via
TrueType GX font
- debian/patches/CVE-2010-3855.patch: add bounds checks to
src/truetype/ttgxvar.c.
- CVE-2010-3855
Checksums-Sha1:
d5ddd1708293cee5dfca5a42401dc380423bcae7 1951 freetype_2.3.9-5ubuntu0.4.dsc
ad4c9cb437014d5b985daffe835441c26f227da4 44604 freetype_2.3.9-5ubuntu0.4.diff.gz
Checksums-Sha256:
322301867c3aebffc16fe89b29ba06c09d674e33eb92e7029498934d2ee95527 1951 freetype_2.3.9-5ubuntu0.4.dsc
827bc1095105794936d7442bc04411472f89123946c23ead854129dba6895b57 44604 freetype_2.3.9-5ubuntu0.4.diff.gz
Files:
a4545566627534c28f8086824692bea2 1951 libs optional freetype_2.3.9-5ubuntu0.4.dsc
8257a21e559665b099b88bdfbe5984db 44604 libs optional freetype_2.3.9-5ubuntu0.4.diff.gz
Original-Maintainer: Steve Langasek <vorlon at debian.org>
- Previous message: [ubuntu/karmic-security] pidgin_2.6.2-1ubuntu7.3_sparc_translations.tar.gz (delayed), pidgin_2.6.2-1ubuntu7.3_i386_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_amd64_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_ia64_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_armel_translations.tar.gz, pidgin_2.6.2-1ubuntu7.3_lpia_translations.tar.gz, pidgin, pidgin_2.6.2-1ubuntu7.3_powerpc_translations.tar.gz 1:2.6.2-1ubuntu7.3 (Accepted)
- Next message: [ubuntu/karmic-security] cups_1.4.1-5ubuntu2.7_ia64_translations.tar.gz, cups_1.4.1-5ubuntu2.7_i386_translations.tar.gz, cups_1.4.1-5ubuntu2.7_amd64_translations.tar.gz, cups_1.4.1-5ubuntu2.7_sparc_translations.tar.gz (delayed), cups_1.4.1-5ubuntu2.7_armel_translations.tar.gz, cups_1.4.1-5ubuntu2.7_powerpc_translations.tar.gz, cups_1.4.1-5ubuntu2.7_lpia_translations.tar.gz, cups 1.4.1-5ubuntu2.7 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Karmic-changes
mailing list