-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2014-05-13 12:04:55 UTC
-
Revision ID:
package-import@ubuntu.com-20140513120455-q6523a3z6vibeeug
Tags: 1:1.4.5-2ubuntu0.12.10.2
* SECURITY UPDATE: denial of service and possible code execution via
font metadata file parsing
- debian/patches/CVE-2014-0209.patch: check for overflows in
src/fontfile/dirfile.c, src/fontfile/fontdir.c.
- CVE-2014-0209
* SECURITY UPDATE: denial of service and possible code execution via
xfs font server replies
- debian/patches/CVE-2014-021x.patch: check lengths and sizes in
src/fc/fsconvert.c, src/fc/fserve.c.
- CVE-2014-0210
- CVE-2014-0211