[ubuntu/lucid-security] t1lib 5.1.2-3ubuntu0.10.04.2 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Thu Jan 19 17:34:48 UTC 2012 

t1lib (5.1.2-3ubuntu0.10.04.2) lucid-security; urgency=low

  * SECURITY UPDATE: fix denial of service via oversized fonts
    - debian/patches/CVE-2011-1552_1553_1554.patch: add additional tests to
      address remaining crashes
    - CVE-2011-1552
    - CVE-2011-1553
    - CVE-2011-1554
  * SECURITY UPDATE: fix heap-based buffer overflow via AFM font parser
    - debian/patches/CVE-2010-2642_2011-0433.patch: verify array boundaries in
      lib/t1lib/parseAFM.c
    - CVE-2010-2642
    - CVE-2011-0433

Date: Tue, 17 Jan 2012 14:38:43 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/t1lib/5.1.2-3ubuntu0.10.04.2
-------------- next part --------------
Format: 1.8
Date: Tue, 17 Jan 2012 14:38:43 -0600
Source: t1lib
Binary: libt1-5 libt1-dev t1lib-bin libt1-doc libt1-5-dbg
Architecture: source
Version: 5.1.2-3ubuntu0.10.04.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 libt1-5    - Type 1 font rasterizer library - runtime
 libt1-5-dbg - Type 1 font rasterizer library - debugging runtime
 libt1-dev  - Type 1 font rasterizer library - development
 libt1-doc  - Type 1 font rasterizer library - developers documentation
 t1lib-bin  - Type 1 font rasterizer library - user binaries
Changes: 
 t1lib (5.1.2-3ubuntu0.10.04.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: fix denial of service via oversized fonts
     - debian/patches/CVE-2011-1552_1553_1554.patch: add additional tests to
       address remaining crashes
     - CVE-2011-1552
     - CVE-2011-1553
     - CVE-2011-1554
   * SECURITY UPDATE: fix heap-based buffer overflow via AFM font parser
     - debian/patches/CVE-2010-2642_2011-0433.patch: verify array boundaries in
       lib/t1lib/parseAFM.c
     - CVE-2010-2642
     - CVE-2011-0433
Checksums-Sha1: 
 6066d38f92d0e8f575db9e1d6da68817986b2a98 1906 t1lib_5.1.2-3ubuntu0.10.04.2.dsc
 7cd940a93d498e74fc565db0ae17850760aaa962 20215 t1lib_5.1.2-3ubuntu0.10.04.2.diff.gz
Checksums-Sha256: 
 39d04c775f2b00ae53bb336516694f6ad1d0a0f4a80d49611260985cded29349 1906 t1lib_5.1.2-3ubuntu0.10.04.2.dsc
 1183a248cab10dfa7d9aca7d8668cfcb53c0af5956c4247385969af072e6069f 20215 t1lib_5.1.2-3ubuntu0.10.04.2.diff.gz
Files: 
 3c6d6b9bcc600b56d9c458e5ee7dbdaf 1906 libs optional t1lib_5.1.2-3ubuntu0.10.04.2.dsc
 e6d011c3c445c373c2942dbc54076a74 20215 libs optional t1lib_5.1.2-3ubuntu0.10.04.2.diff.gz
Original-Maintainer: Ruben Molina <rmolina at udea.edu.co>

More information about the Lucid-changes mailing list