-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-03-01 11:02:04 UTC
-
Revision ID:
james.westby@ubuntu.com-20110301110204-l6j7lu0vyjil0i37
Tags: 1.20.5-0ubuntu1.2
* SECURITY UPDATE: denial of service via crafted font file
- debian/patches/14_security_CVE-2010-0421.patch: validate glyphs in
pango/opentype/harfbuzz-gdef.c.
- CVE-2010-0421
* SECURITY UPDATE: denial of service and possible code execution via
crafted font file (LP: #696616)
- debian/patches/15_security_CVE-2011-0020.patch: check for overflow in
pango/pangoft2-render.c.
- CVE-2011-0020