Viewing all changes in revision 18.
- Committer: Bazaar Package Importer
- Date: 2009-04-22 10:02:21 UTC
- Revision ID: james.westby@ubuntu.com-20090422100221-xdfg2fmju39j0vyr
* SECURITY UPDATE: possible code execution via multiple integer overflows
- debian/patches-freetype/security-CVE-2009-0946.patch: validate sid
values in src/cff/cffload.c, check state->prefix in src/lzw/ftzopen.c,
don't overflow int with table + length in src/sfnt/ttcmap.c, validate
glyph width and height in src/smooth/ftsmooth.c.
- CVE-2009-0946
- debian/patches-freetype/security-CVE-2009-0946.patch: validate sid
values in src/cff/cffload.c, check state->prefix in src/lzw/ftzopen.c,
don't overflow int with table + length in src/sfnt/ttcmap.c, validate
glyph width and height in src/smooth/ftsmooth.c.
- CVE-2009-0946
- files added:
- debian/patches-freetype/security-CVE-2009-0946.patch
- files modified:
- debian/changelog
expand all
collapse all
added
removed
