[ubuntu/saucy-security] freetype 2.4.12-0ubuntu1.1 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Mon Mar 17 11:37:55 UTC 2014


freetype (2.4.12-0ubuntu1.1) saucy-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution in
    CFF rasterizer
    - debian/patches-freetype/CVE-2014-2240.patch: validate hintMask in
      src/cff/cf2hints.c.
    - CVE-2014-2240
  * SECURITY UPDATE: denial of service in CFF rasterizer
    - debian/patches-freetype/CVE-2014-2241.patch: don't trigger asserts in
      src/cff/cf2ft.c.
    - CVE-2014-2241

Date: 2014-03-13 17:11:11.427376+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/saucy/+source/freetype/2.4.12-0ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Saucy-changes mailing list