-
Committer:
Bazaar Package Importer
-
Author(s):
Kees Cook
-
Date:
2008-01-17 11:24:36 UTC
-
Revision ID:
james.westby@ubuntu.com-20080117112436-3libu1x6sanjw0je
Tags: 1:1.1.1-0ubuntu12.3
* SECURITY UPDATE: multiple memory corruption flaws.
* Added fix_CVE-2007-5958.patch: upstream fix from Matthieu Herrb.
* Added fix_CVE-2007-5760.patch: backported upstream fixes
(bbde5b62a137ba726a747b838d81e92d72c1b42b) for XFree86 Misc extension out
of bounds array index.
* Added fix_CVE-2007-6427.patch: backported upstream fixes
(dd5e0f5cd5f3a87fee86d99c073ffa7cf89b0a27) for Xinput extension memory
corruption.
* Added fix_CVE-2007-6428.patch: backported upstream fixes
(7dc1717ff0f96b99271a912b8948dfce5164d5ad) for TOG-cup extension memory
corruption.
* Added fix_CVE-2007-6429.patch: backported upstream fixes
(6de61f82728df22ea01f9659df6581b87f33f11d) for MIT-SHM and EVI extensions
integer overflows.
* Added fix_CVE-2008-0006.patch: backported upstream fixes
(8e133d96740d010a4fd969a8188e6e71fb2cafe2) for PCF Font parser buffer
overflow.