[ubuntu/lucid-security] freetype 2.3.11-1ubuntu2.5 (Accepted)
Tyler Hicks
tyhicks at canonical.com
Fri Nov 18 04:03:51 UTC 2011
- Previous message: [ubuntu/lucid-security] openldap_2.4.21-0ubuntu5.6_ia64_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_i386_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_amd64_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_armel_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_powerpc_translations.tar.gz, openldap, openldap_2.4.21-0ubuntu5.6_sparc_translations.tar.gz 2.4.21-0ubuntu5.6 (Accepted)
- Next message: [ubuntu/lucid-security] pidgin_2.6.6-1ubuntu4.4_i386_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_amd64_translations.tar.gz, pidgin, pidgin_2.6.6-1ubuntu4.4_sparc_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_powerpc_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_ia64_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_armel_translations.tar.gz 1:2.6.6-1ubuntu4.4 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
freetype (2.3.11-1ubuntu2.5) lucid-security; urgency=low
* SECURITY UPDATE: Arbitrary code execution via crafted Type 1 font
- debian/patches-freetype/CVE-2011-3256.patch: Sanitize Type 1 font inputs
in src/base/ftbitmap.c, src/psaux/t1decode.c, src/raster/ftrend1.c, and
src/truetype/ttgxvar.c. Based on upstream patch.
- CVE-2011-3256
* SECURITY UPDATE: Arbitrary code execution via crafted CID-keyed PS font
- debian/patches-freetype/CVE-2011-3439.patch: Sanitize CID-keyed
PostScript font inputs in src/cid/cidload.c. Based on upstream patch.
- CVE-2011-3439
Date: Thu, 17 Nov 2011 13:59:33 -0600
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/freetype/2.3.11-1ubuntu2.5
-------------- next part --------------
Format: 1.8
Date: Thu, 17 Nov 2011 13:59:33 -0600
Source: freetype
Binary: libfreetype6 libfreetype6-dev freetype2-demos libfreetype6-udeb
Architecture: source
Version: 2.3.11-1ubuntu2.5
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description:
freetype2-demos - FreeType 2 demonstration programs
libfreetype6 - FreeType 2 font engine, shared library files
libfreetype6-dev - FreeType 2 font engine, development files
libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb)
Changes:
freetype (2.3.11-1ubuntu2.5) lucid-security; urgency=low
.
* SECURITY UPDATE: Arbitrary code execution via crafted Type 1 font
- debian/patches-freetype/CVE-2011-3256.patch: Sanitize Type 1 font inputs
in src/base/ftbitmap.c, src/psaux/t1decode.c, src/raster/ftrend1.c, and
src/truetype/ttgxvar.c. Based on upstream patch.
- CVE-2011-3256
* SECURITY UPDATE: Arbitrary code execution via crafted CID-keyed PS font
- debian/patches-freetype/CVE-2011-3439.patch: Sanitize CID-keyed
PostScript font inputs in src/cid/cidload.c. Based on upstream patch.
- CVE-2011-3439
Checksums-Sha1:
20c23eaab8825f4c5417738510ae1be4d9c70d2c 1953 freetype_2.3.11-1ubuntu2.5.dsc
4aaaabcfcf1affe12369c7b74f443272901993a9 44290 freetype_2.3.11-1ubuntu2.5.diff.gz
Checksums-Sha256:
1fe5b7489ab819d20964c2301e51a04b2e883bc1dca46701453d9e31e7dc2508 1953 freetype_2.3.11-1ubuntu2.5.dsc
2f86164212f3cd499479ceffa8890c5b074cdb9b5487ee2311afa8d56ab36eb5 44290 freetype_2.3.11-1ubuntu2.5.diff.gz
Files:
c08c173eac79579f7c202b9e14621f8a 1953 libs optional freetype_2.3.11-1ubuntu2.5.dsc
06704e51e6ce75a23276509d7d1d49a9 44290 libs optional freetype_2.3.11-1ubuntu2.5.diff.gz
Original-Maintainer: Steve Langasek <vorlon at debian.org>
- Previous message: [ubuntu/lucid-security] openldap_2.4.21-0ubuntu5.6_ia64_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_i386_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_amd64_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_armel_translations.tar.gz, openldap_2.4.21-0ubuntu5.6_powerpc_translations.tar.gz, openldap, openldap_2.4.21-0ubuntu5.6_sparc_translations.tar.gz 2.4.21-0ubuntu5.6 (Accepted)
- Next message: [ubuntu/lucid-security] pidgin_2.6.6-1ubuntu4.4_i386_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_amd64_translations.tar.gz, pidgin, pidgin_2.6.6-1ubuntu4.4_sparc_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_powerpc_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_ia64_translations.tar.gz, pidgin_2.6.6-1ubuntu4.4_armel_translations.tar.gz 1:2.6.6-1ubuntu4.4 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Lucid-changes
mailing list