* SECURITY UPDATE: denial of service and possible code execution via font metadata file parsing - debian/patches/CVE-2014-0209.patch: check for overflows in src/fontfile/dirfile.c, src/fontfile/fontdir.c. - CVE-2014-0209 * SECURITY UPDATE: denial of service and possible code execution via xfs font server replies - debian/patches/CVE-2014-021x.patch: check lengths and sizes in src/fc/fsconvert.c, src/fc/fserve.c. - CVE-2014-0210 - CVE-2014-0211