[ubuntu/precise] t1lib 5.1.2-3.4 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Tue Jan 17 20:04:15 UTC 2012
t1lib (5.1.2-3.4) unstable; urgency=high
* Non-maintainer upload by the Security Team.
* debian/patches:
- CVE-2010-2642 added, fix heap-based buffer overflow first found in
evince but applicable to the embedded afmparse library found in t1lib
too. Fixes CVE-2011-0433 too on the same patch.
t1lib (5.1.2-3.3) unstable; urgency=low
* Non-maintainer upload.
* Fix arbitrary code execution CVE-2011-0764 by only using ppoints when
it is a valid pointer (Closes: #652996).
* Don't ship .la file anymore (Closes: #633247).
t1lib (5.1.2-3.2) unstable; urgency=low
* Non-maintainer upload. (version 5.1.2-3.2 triggered a problem with dak)
* format-security.diff: use relevant "%s" format when passing a
variable string to a printf() function and replace printf()
with puts() for the model-only IfTrace0 macro. Thanks to Colin Watson
and Loïc Minier! (Closes: #646470)
Date: 2012-01-15 21:27:15.344197+00:00
Changed-By: Ruben Molina <rmolina at udea.edu.co>
Signed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/t1lib/5.1.2-3.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list