[ubuntu/xenial-security] freetype 2.6.1-0.1ubuntu2.5 (Accepted)
Alex Murray
alex.murray at canonical.com
Tue Oct 20 10:09:16 UTC 2020
freetype (2.6.1-0.1ubuntu2.5) xenial-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow via integer truncation in
Load_SBit_Png
- debian/patches-freetype/CVE-2020-15999.patch: Update
src/sfnt/pngshim.c to test and reject invalid bitmap size earlier in
Load_SBit_Png. Based on upstream patch.
- CVE-2020-15999
Date: 2020-10-20 04:04:24.603479+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
https://launchpad.net/ubuntu/+source/freetype/2.6.1-0.1ubuntu2.5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list