[ubuntu/quantal-updates] libxfont 1:1.4.5-2ubuntu0.12.10.2 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed May 14 14:58:17 UTC 2014
libxfont (1:1.4.5-2ubuntu0.12.10.2) quantal-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
font metadata file parsing
- debian/patches/CVE-2014-0209.patch: check for overflows in
src/fontfile/dirfile.c, src/fontfile/fontdir.c.
- CVE-2014-0209
* SECURITY UPDATE: denial of service and possible code execution via
xfs font server replies
- debian/patches/CVE-2014-021x.patch: check lengths and sizes in
src/fc/fsconvert.c, src/fc/fserve.c.
- CVE-2014-0210
- CVE-2014-0211
Date: 2014-05-13 16:36:12.727494+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/quantal/+source/libxfont/1:1.4.5-2ubuntu0.12.10.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Quantal-changes
mailing list