[ubuntu/lucid-security] freetype, freetype (delayed) 2.3.11-1ubuntu2.4 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Nov 4 13:05:59 GMT 2010
- Previous message: [ubuntu/lucid-security] pidgin_2.6.6-1ubuntu4.1_powerpc_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_ia64_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_sparc_translations.tar.gz (delayed), pidgin, pidgin_2.6.6-1ubuntu4.1_armel_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_amd64_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_i386_translations.tar.gz 1:2.6.6-1ubuntu4.1 (Accepted)
- Next message: [ubuntu/lucid-security] cups_1.4.3-1ubuntu1.3_powerpc_translations.tar.gz, cups_1.4.3-1ubuntu1.3_i386_translations.tar.gz, cups_1.4.3-1ubuntu1.3_armel_translations.tar.gz, cups_1.4.3-1ubuntu1.3_amd64_translations.tar.gz, cups_1.4.3-1ubuntu1.3_sparc_translations.tar.gz (delayed), cups, cups_1.4.3-1ubuntu1.3_ia64_translations.tar.gz 1.4.3-1ubuntu1.3 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
freetype (2.3.11-1ubuntu2.4) lucid-security; urgency=low
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via libXft overflow.
- debian/patches/CVE-2010-3311.patch: correctly validate position in
src/base/ftstream.c.
- CVE-2010-3311
* SECURITY UPDATE: denial of service and possible code execution via
improper error handling of SHZ bytecode instruction
- debian/patches/CVE-2010-3814.patch: add bounds check to
src/truetype/ttinterp.c.
- CVE-2010-3814
* SECURITY UPDATE: denial of service and possible code execution via
TrueType GX font
- debian/patches/CVE-2010-3855.patch: add bounds checks to
src/truetype/ttgxvar.c.
- CVE-2010-3855
Date: Tue, 02 Nov 2010 14:38:53 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/freetype/2.3.11-1ubuntu2.4
-------------- next part --------------
Format: 1.8
Date: Tue, 02 Nov 2010 14:38:53 -0400
Source: freetype
Binary: libfreetype6 libfreetype6-dev freetype2-demos libfreetype6-udeb
Architecture: source
Version: 2.3.11-1ubuntu2.4
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
freetype2-demos - FreeType 2 demonstration programs
libfreetype6 - FreeType 2 font engine, shared library files
libfreetype6-dev - FreeType 2 font engine, development files
libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb)
Changes:
freetype (2.3.11-1ubuntu2.4) lucid-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via libXft overflow.
- debian/patches/CVE-2010-3311.patch: correctly validate position in
src/base/ftstream.c.
- CVE-2010-3311
* SECURITY UPDATE: denial of service and possible code execution via
improper error handling of SHZ bytecode instruction
- debian/patches/CVE-2010-3814.patch: add bounds check to
src/truetype/ttinterp.c.
- CVE-2010-3814
* SECURITY UPDATE: denial of service and possible code execution via
TrueType GX font
- debian/patches/CVE-2010-3855.patch: add bounds checks to
src/truetype/ttgxvar.c.
- CVE-2010-3855
Checksums-Sha1:
7e71aa6119a8a0bf1212dd2bcb7d2991ff7f0722 1953 freetype_2.3.11-1ubuntu2.4.dsc
5e9ec74f8897712d6679917b2a46286a8b67e7f4 42589 freetype_2.3.11-1ubuntu2.4.diff.gz
Checksums-Sha256:
0da40eff19efc7c88b66fac34886d48cd3275b7f009487bd3b0d52b118ec8afd 1953 freetype_2.3.11-1ubuntu2.4.dsc
a9c9cadf9e5d52ee1962e3401f7ef1cb57d4bc26a6760400b6c36a074e71c08b 42589 freetype_2.3.11-1ubuntu2.4.diff.gz
Files:
c6f21a05c53ef3b2b4ebcb318421afb2 1953 libs optional freetype_2.3.11-1ubuntu2.4.dsc
8aa1841bf3e29ef5aad1296d2f785982 42589 libs optional freetype_2.3.11-1ubuntu2.4.diff.gz
Original-Maintainer: Steve Langasek <vorlon at debian.org>
- Previous message: [ubuntu/lucid-security] pidgin_2.6.6-1ubuntu4.1_powerpc_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_ia64_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_sparc_translations.tar.gz (delayed), pidgin, pidgin_2.6.6-1ubuntu4.1_armel_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_amd64_translations.tar.gz, pidgin_2.6.6-1ubuntu4.1_i386_translations.tar.gz 1:2.6.6-1ubuntu4.1 (Accepted)
- Next message: [ubuntu/lucid-security] cups_1.4.3-1ubuntu1.3_powerpc_translations.tar.gz, cups_1.4.3-1ubuntu1.3_i386_translations.tar.gz, cups_1.4.3-1ubuntu1.3_armel_translations.tar.gz, cups_1.4.3-1ubuntu1.3_amd64_translations.tar.gz, cups_1.4.3-1ubuntu1.3_sparc_translations.tar.gz (delayed), cups, cups_1.4.3-1ubuntu1.3_ia64_translations.tar.gz 1.4.3-1ubuntu1.3 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Lucid-changes
mailing list