← Back to branch summary

~ubuntu-branches/ubuntu/precise/libxfont/precise-security

« back to all changes in this revision

Viewing changes to debian/changelog

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2014-05-13 12:30:10 UTC
  • Revision ID: package-import@ubuntu.com-20140513123010-rdkvwfzafigo4s9w
Tags: 1:1.4.4-1ubuntu0.2
* SECURITY UPDATE: denial of service and possible code execution via
  font metadata file parsing
  - debian/patches/CVE-2014-0209.patch: check for overflows in
    src/fontfile/dirfile.c, src/fontfile/fontdir.c.
  - CVE-2014-0209
* SECURITY UPDATE: denial of service and possible code execution via
  xfs font server replies
  - debian/patches/CVE-2014-021x.patch: check lengths and sizes in
    src/fc/fsconvert.c, src/fc/fserve.c.
  - CVE-2014-0210
  - CVE-2014-0211

Show diffs side-by-side

added added

removed removed

Lines of Context:
debian/changelog
 
1
libxfont (1:1.4.4-1ubuntu0.2) precise-security; urgency=medium
 
2
 
 
3
  * SECURITY UPDATE: denial of service and possible code execution via
 
4
    font metadata file parsing
 
5
    - debian/patches/CVE-2014-0209.patch: check for overflows in
 
6
      src/fontfile/dirfile.c, src/fontfile/fontdir.c.
 
7
    - CVE-2014-0209
 
8
  * SECURITY UPDATE: denial of service and possible code execution via
 
9
    xfs font server replies
 
10
    - debian/patches/CVE-2014-021x.patch: check lengths and sizes in
 
11
      src/fc/fsconvert.c, src/fc/fserve.c.
 
12
    - CVE-2014-0210
 
13
    - CVE-2014-0211
 
14
 
 
15
 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Tue, 13 May 2014 12:30:10 -0400
 
16
 
1
17
libxfont (1:1.4.4-1ubuntu0.1) precise-security; urgency=low
2
18
 
3
19
  * SECURITY UPDATE: denial of service and possible code execution via